Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

Turbo Intruder: Abusing HTTP Misfeatures to Accelerate Web Application Attacks

Bugcrowd via YouTube

Overview

Explore advanced techniques for accelerating web application attacks in this 30-minute conference talk from LevelUp 0x03. Dive into the world of Turbo Intruder, a research-grade Burp extension designed for high-speed HTTP requests. Learn how to leverage custom HTTP stacks to achieve over 30,000 HTTPS requests per second, significantly outperforming traditional tools. Discover methods for launching multi-step attacks, filtering responses, and generating context-aware payloads. Gain insights into the underlying HTTP abuse that enables such high speeds, and explore ongoing research on automatically identifying interesting responses. Through live demonstrations and code examples, master the use of Turbo Intruder to enhance your web application security testing capabilities.

Syllabus

Introduction
Agenda
Why Turbo Intruder
Using Turbo Intruder
Python Code
Attack Stats
Live Demo
Streaming Attacks
Default script
Valid responses
Random features
Summary

Taught by

Bugcrowd

Reviews

Start your review of Turbo Intruder: Abusing HTTP Misfeatures to Accelerate Web Application Attacks

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.