Research Academy
My account Customers About Blog Careers Legal Contact Resellers
The Burp Suite User Forum was discontinued on the 1st November 2024.

Burp Suite User Forum

For support requests, go to the Support Center. To discuss with other Burp users, head to our Discord page.

SUPPORT CENTER DISCORD

Learn properly as a beginner im really struggling with this

peter | Last updated: Mar 13, 2023 07:24AM UTC

I am really struggling with all of the labs as a beginner but really want to learn what can i do? shall i watch you tube videos instead or any advice thank you

Liam, PortSwigger Agent | Last updated: Mar 13, 2023 08:32AM UTC

Thanks for your message, Peter. Have you tried following our learning path? - https://portswigger.net/web-security/learning-path Which labs have you attempted?

peter | Last updated: Mar 13, 2023 08:43AM UTC

Hi yes i have and i have tried most of them XSS, SQL, Info disclosure and JWTs, and a few others i think i struggle with all of them because i am brand new i don't understand what any of it means when there talking about web related things thank you

Liam, PortSwigger Agent | Last updated: Mar 14, 2023 08:59AM UTC

Hi Peter, perhaps some courses about the web and HTTP would be a good starting point: - https://learndigital.withgoogle.com/digitalgarage/course/understanding-the-web - https://www.freecodecamp.org/news/http-networking-protocol-course/

peter | Last updated: Apr 11, 2023 05:56AM UTC

Thank you also when doing labs a lot of them aren't ordered correctly im having issues with the labs on logic flaw labs for example simple 2FA bypass but i haven't learnt 2FA bypass at all up to that point. Then the APPRENTICE Inconsistent security controls lab. There isn't enough documentation for it like what am i suppose to do exactly here? It doesn't really say and i end up reading solutions on 99% of the labs

Liam, PortSwigger Agent | Last updated: Apr 11, 2023 08:27AM UTC

Do you mean you haven't learned what "2FA bypass" is?

peter | Last updated: Apr 11, 2023 11:12PM UTC

Yes for instance the logic flaw topic there is a few 2fa bypasses on there zero documentation on what your suppose to do. There is quite alot like this where it doesn't give you enough context. What am i suppose to do.

Liam, PortSwigger Agent | Last updated: Apr 13, 2023 06:54AM UTC