Back to course

Burp Suite I: Intercepting HTTP Traffic

Cyber Security Mastery: From Zero to Hero

The Proxy Tab

The Proxy tab is the core of Burp Suite. It allows you to intercept traffic flowing in both directions.

The Intercept Feature

  1. Intercept is ON: When the 'Intercept is on' button is active, every single request and response is paused, waiting for your instruction.
  2. Viewing the Request: You see the raw HTTP request (method, URL, headers, POST data).
  3. Actions:
    • Forward: Sends the packet unmodified.
    • Drop: Discards the packet entirely (useful for stopping unnecessary traffic).
    • Action Menu: Allows sending the request to other Burp tools (Repeater, Intruder, Scanner).

The History Tab

Even if the intercept is off, the HTTP History tab logs every request and response, which is crucial for reviewing the application's structure and finding hidden endpoints.