𝖄𝕺🌎𝕿𝕽𝕺¥

𝖄𝕺🌎𝕿𝕽𝕺¥

𝕴 𝖉𝖔 𝖒𝖆𝖌𝖎𝖈
github
HomeArchivesNFTsMemosIndex

Notes on Initial Configuration and Use of Burp Suite - Proxy Settings, Certificate Issue Resolution

#Burp Suite53
AI Translation
This post is translated from Chinese into English through AI.View Original
AI-generated summary
This article provides instructions on how to configure and use Burp Suite, focusing on proxy settings and resolving certificate issues. The author shares their own experience with setting up Burp Suite and encourages readers to follow their steps. The article includes screenshots and step-by-step instructions for configuring the proxy server and resolving certificate problems. The author also provides some additional tips and reminders for troubleshooting connectivity issues.

Introduction#

I am using Kali Linux mounted on a virtual machine, but you can test with other versions as well.
Today is my third day of exploring and I have already completed most of the configuration. Although I am not a professional, I have figured things out through my own practice. So, following my steps should be fine. If there are any omissions or errors in my explanations, please feel free to correct me.

Getting Started#

First, let's open the Burp Suite software.
Click "OK," "I accept," "Next," and "Start Burp Suite" to complete the initial configuration.
burp_setup_1
burp_setup_2
burp_setup_3

Proxy Server Settings and Connection#

Once inside the software, find the proxy IP and port information. Then, configure your browser to use this proxy to access websites and enable the functionality of Burp Suite.
burp_proxy_1
I am using the default Firefox browser, so let's go to the settings.
kali_firefox
Scroll down to the proxy settings.
kali_firefox_2
Follow the instructions in the image, and delete "localhost, 127.0.0.1" from the "No proxy for" field. Click OK.
burp_proxy_2

Resolving Certificate Issues#

Next, when we try to access a website, we may encounter the following message:
cert_1
This is because Burp Suite makes the browser feel insecure. To resolve this, we need to install Burp Suite's certificate.
In the browser with the proxy enabled, enter the following URL: http://burp/
Click on "CA certificate" to download the certificate.
cert_2

After downloading, go to the settings page and add the certificate.
cert_3
cert_4
cert_5

Select both options to trust the certificate, and click OK.
cert_6
Note:

  1. If you still can't access the internet, make sure the software is in the following state (since the proxy intercepts requests, enabling it will intercept web traffic, causing web pages to fail to load).
    cert_7
  2. If you need to modify the original proxy server without running Burp Suite, otherwise you won't be able to connect to the internet.
    cert_8
Loading...
Ownership of this post data is guaranteed by blockchain and smart contracts to the creator alone.