Web Pentesting with Burp Suite: Hands-On Introduction

Space is limited, please register at: https://www.eventbrite.com/e/1986229331398

Web applications power everything from online banking to social media to internal corporate systems. Because of their complexity, they are also one of the most common targets for attackers.

Understanding how these systems are tested is a foundational skill in cybersecurity.
In this hands-on workshop, participants will learn how to use Burp Suite, a professional-grade web application testing platform used by security researchers and penetration testers around the world.

• During the session we will explore:
• How web applications communicate using HTTP and HTTPS
• Setting up Burp Suite as a proxy between your browser and the internet
• Intercepting and inspecting web requests and responses
• Modifying requests to test application behavior
• Understanding parameters, cookies, headers, and sessions
• Identifying simple vulnerabilities and misconfigurations
• Using core Burp tools such as Proxy, Repeater, and Intruder

Participants will leave with a practical understanding of how web traffic works and how security professionals analyze and test web applications.
This class is ideal for:

• Aspiring penetration testers
• Developers who want to understand how their applications are attacked
• IT professionals interested in cybersecurity
• Anyone curious about how web security testing works

No prior penetration testing experience is required, but basic familiarity with web browsers and networking concepts will help.

This class focuses on learning and ethical testing techniques in controlled environments. The techniques demonstrated should only be used on systems you own or have explicit permission to test.

## FAQs

Do I need prior penetration testing experience?
No. This class is designed as an introduction to web application testing.

Do I need to bring a laptop?
Yes. Participants should bring a laptop capable of running Burp Suite and a modern web browser.

What software should I install before the class?
Burp Suite Community Edition will be used. Installation instructions will be sent before the session.

Will we be hacking real websites?
No. All exercises will take place in safe, intentionally vulnerable environments designed for learning.

Is this legal to learn?
Yes. Learning security testing techniques is completely legal. The key rule is that testing should only be performed on systems you own or have permission to test.

Space is limited, please register at: https://www.eventbrite.com/e/1985099667543