This presentation will be an introduction to web app pen testing; specifically how to use Burp and Zap. These programs are commonly used during web penetration assessments, web app testing, and can even be used in mobile app testing. We will go over some basics of web site functions, cover basic functionality of the tools, and provide some practice websites to tinker with.
GOAL: Provide an introductory understanding of web application testing
THINGS TO BRING: Note taking material, laptop with Burp and/or Zap installed (or a Kali Linux distro)
SKILL LEVEL: Everyone. Basic understanding of web technologies is helpful but will be covered during the presentation