Little Zap of Horrors
The OWASP Podcast Series
00:00
What's the Problem With Burp?
"I like to take tools for purpose A and use them for purpose B that maybe they weren't exactly intended for. One of the funny things was particularly in the API domain is those tools make nice requests, like valid structural requests," he says. "Now I can fiddle with the data in the request and do kind of fuzzing with a QA tool." He adds: "To do security, I need to do really weird stuff... Burp is a really good tool but if you're a professional pen tester ... You shouldn't constrain yourself to one particular tool"
Transcript
Play full episode
