Burp Suite is a renowned software used in web security for cyber security professionals. This software is based on a Java-based framework. This software is built and maintained by Portswigger. Burp Suite can be used in various sectors of cybersecurity, such as Application Programming Interfaces (API), mobile applications, and web application security. It can capture HTTP/HTTPS traffic between a web browser and a web server through a proxy chain. In simpler words, it is similar to an MITM attack. The attacker or a pentester can manipulate the captured requests to find vulnerabilities in the application. This software is used for…
Author: Dark Knight
In cybersecurity, organisations use security frameworks and controls to protect against threats, risks, and vulnerabilities. Frameworks include the NIST Risk Management Framework (NIST RMF), the Cybersecurity Framework (CSF), the CIA triad, and others. Most of the security framework can be applied to any organisation, regardless of its size (small, mid-sized, or large), to protect its assets, data, and operations. Different frameworks apply to various sectors, such as HIPAA for healthcare and PCI DSS for finance. Organisations can tweak the security framework to make it easier or more suitable for themselves. In this article, we will discuss security frameworks and controls,…
