Preparing for an Engagement                                                 Chapter 3

            After browsing around a site, you'll start to see it populating information in Burp. Under
            the Target | Site map tabs, you can see URLs you've hit as you browse through Burp:

































            Logging into every form, clicking on every tab, following every button d eventually you'll
            build up a good enough picture of the application to inform the rest of your research. And
            because you're building this picture within Burp, you can add or remove URLs from scope,
            and send the information you're gathering for follow-up investigations in other Burp tools.






















                                                    [ 44 ]