差别
这里会显示出您选择的修订版和当前版本之间的差别。
| 两侧同时换到之前的修订记录 前一修订版 后一修订版 | 前一修订版 | ||
| burp [2026/03/09 12:36] – 张叶安 | burp [2026/03/09 13:57] (当前版本) – 张叶安 | ||
|---|---|---|---|
| 行 46: | 行 46: | ||
| 保存后点击图标选择 " | 保存后点击图标选择 " | ||
| - | {{pasted: | + | {{pasted: |
| + | |||
| + | 安装 CA 证书(HTTPS 抓包必需) | ||
| + | |||
| + | 浏览器访问: | ||
| + | |||
| + | 点击 "CA Certificate" | ||
| + | |||
| + | {{pasted: | ||
| + | |||
| + | 浏览器导入证书: | ||
| + | |||
| + | Chrome: 设置 → 隐私和安全 → 安全 → 管理设备证书 → 导入 → 受信任的根证书颁发机构 | ||
| + | |||
| + | {{pasted: | ||
| + | |||
| + | {{pasted: | ||
| + | |||
| + | {{pasted: | ||
| + | |||
| + | {{pasted: | ||
| + | |||
| + | {{pasted: | ||
| + | |||
| + | 点击Dashboard\New live task,新建task | ||
| + | |||
| + | {{pasted: | ||
| + | |||
| + | 点击Target\Site map \open browser | ||
| + | |||
| + | {{pasted: | ||
| + | |||
| + | 打开测试网址 | ||
| + | |||
| + | {{pasted: | ||
| + | |||
| + | 打开view/ | ||
| + | |||
| + | {{pasted: | ||
| + | |||
| + | 打开intercept off | ||
| + | |||
| + | {{pasted: | ||
| + | |||
| + | 打开浏览器 输入网址 | ||
| + | |||
| + | {{pasted: | ||
| + | |||
| + | {{pasted: | ||
| + | |||
| + | 点击Forward控制浏览步骤前进 | ||
| + | |||
| + | {{pasted: | ||
| + | |||
| + | 操纵网页,一直点前进 | ||
| + | |||
| + | 点击http history | ||
| + | |||
| + | 可以看见浏览过程中的api调用情况 | ||
| + | |||
| + | 如目前这个网站的一些json配置是暴露在访问者权限上面的, | ||
| + | |||
| + | {{pasted: | ||
| + | |||
| + | |||
| + | 更多学习资料 | ||
| + | |||
| + | https:// | ||
| + | |||
| + | {{pasted: | ||
| + | |||
| + | |||
| + | https:// | ||
| + | |||
| + | https:// | ||
| + | |||
| + | https:// | ||
张叶安