Research Academy
My account Customers About Blog Careers Legal Contact Resellers

Burp Suite User Forum

Create new post

Learn properly as a beginner im really struggling with this

peter | Last updated: Mar 13, 2023 07:24AM UTC

I am really struggling with all of the labs as a beginner but really want to learn what can i do? shall i watch you tube videos instead or any advice thank you

Liam, PortSwigger Agent | Last updated: Mar 13, 2023 08:32AM UTC

Thanks for your message, Peter. Have you tried following our learning path? - https://portswigger.net/web-security/learning-path Which labs have you attempted?

peter | Last updated: Mar 13, 2023 08:43AM UTC

Hi yes i have and i have tried most of them XSS, SQL, Info disclosure and JWTs, and a few others i think i struggle with all of them because i am brand new i don't understand what any of it means when there talking about web related things thank you

Liam, PortSwigger Agent | Last updated: Mar 14, 2023 08:59AM UTC

Hi Peter, perhaps some courses about the web and HTTP would be a good starting point: - https://learndigital.withgoogle.com/digitalgarage/course/understanding-the-web - https://www.freecodecamp.org/news/http-networking-protocol-course/

peter | Last updated: Apr 11, 2023 05:56AM UTC

Thank you also when doing labs a lot of them aren't ordered correctly im having issues with the labs on logic flaw labs for example simple 2FA bypass but i haven't learnt 2FA bypass at all up to that point. Then the APPRENTICE Inconsistent security controls lab. There isn't enough documentation for it like what am i suppose to do exactly here? It doesn't really say and i end up reading solutions on 99% of the labs

Liam, PortSwigger Agent | Last updated: Apr 11, 2023 08:27AM UTC

Do you mean you haven't learned what "2FA bypass" is?

peter | Last updated: Apr 11, 2023 11:12PM UTC

Yes for instance the logic flaw topic there is a few 2fa bypasses on there zero documentation on what your suppose to do. There is quite alot like this where it doesn't give you enough context. What am i suppose to do.

Liam, PortSwigger Agent | Last updated: Apr 13, 2023 06:54AM UTC

Hi Peter. You should use external resources to learn about 2FA.

You must be an existing, logged-in customer to reply to a thread. Please email us for additional support.