Pentesting with Burp Suite: Hands-On Introduction

Learn how web applications are attacked and tested using Burp Suite. A practical introduction to intercepting, analyzing, and modifying web

Web applications power everything from online banking to social media to internal corporate systems. Because of their complexity, they are also one of the most common targets for attackers.

Understanding how these systems are tested is a foundational skill in cybersecurity.

In this hands-on workshop, participants will learn how to use Burp Suite, a professional-grade web application testing platform used by security researchers and penetration testers around the world.

During the session we will explore:

• How web applications communicate using HTTP and HTTPS
• Setting up Burp Suite as a proxy between your browser and the internet
• Intercepting and inspecting web requests and responses
• Modifying requests to test application behavior
• Understanding parameters, cookies, headers, and sessions
• Identifying simple vulnerabilities and misconfigurations
• Using core Burp tools such as Proxy, Repeater, and Intruder

Participants will leave with a practical understanding of how web traffic works and how security professionals analyze and test web applications.

This class is ideal for:

• Aspiring penetration testers
• Developers who want to understand how their applications are attacked
• IT professionals interested in cybersecurity
• Anyone curious about how web security testing works

No prior penetration testing experience is required, but basic familiarity with web browsers and networking concepts will help.

This class focuses on learning and ethical testing techniques in controlled environments. The techniques demonstrated should only be used on systems you own or have explicit permission to test.