https://jhuk.tech/categories/ctf/Recent content in CTF on Jhuk Tech NewsHugoen-USTue, 11 Jul 2023 18:03:28 +0000https://jhuk.tech/2023/07/11/burp-suite-and-owasp-zap-interception-proxy-configuration/Tue, 11 Jul 2023 18:03:28 +0000https://jhuk.tech/2023/07/11/burp-suite-and-owasp-zap-interception-proxy-configuration/<p>An interception proxy is a must-have tool in any web application penetration tester&rsquo;s arsenal. In brief, an interception proxy is an application downloaded on a host computer and sits in-between a client browser and the remote web server. This specialized tool is purpose-built to intercept HTTP requests that are initiated from the client browser <strong>before</strong> the message is delivered to the remote web server. The tool can manipulate certain elements of the request such as session cookies or parameter values. The application proxy <em>also</em> handles the HTTP response <strong>in-reverse</strong>, meaning the tool can examine the raw data contained in the server&rsquo;s response before the content is ultimately rendered by the client browser.</p>