How to configure RPi to work as wifi access point that uses a Burp as a proxy? [migrated]

I am attempting to use a Raspberry Pi Model B+ as a WiFi access point with the IP address of 192.168.0.1. This access point should redirect all HTTP and HTTPS traffic to a different machine with the IP address of 192.168.0.29 on port 8080…. Continue reading How to configure RPi to work as wifi access point that uses a Burp as a proxy? [migrated]

How can I manipulate certain server side responses? Specifically Ajax Responses? XXE Attack? Hybrid DNS Resolution?

I would like to be able to switch back and forth between the real DNS and maybe setting a local DNS entry so I can manipulate AJAX responses for code security checks.
For instance if the server responds with Ajax on page 1 that page 2 is n… Continue reading How can I manipulate certain server side responses? Specifically Ajax Responses? XXE Attack? Hybrid DNS Resolution?

How to reproduce following POC of dom based open redirection Vulnerability Flagged by burp suite scan

During scan, the burp suite flagged DOM open redirection vulnerability with the following POC. How can I reproduce it?
Data is read from document.referrer and passed to xhr.send.
The following value was injected into the source:
https://ww… Continue reading How to reproduce following POC of dom based open redirection Vulnerability Flagged by burp suite scan