PwnFox

Introduction

Burp Suite, is a powerful toolkit for web application security testing, enabling you to uncover vulnerabilities and strengthen your online defenses with precision and efficiency.

In order for you to use it, you need to set the burp proxy that receive incoming HTTP request from your browser with default port 127.0.0.1:8080. Hence you need to configure your current browser to those proxy in order for the request to pass through the burp.

Burp also provides a pre-configured browser chromium which eases the user that do not want to change proxy in the current browser.

Issue

Using the built-in browser by burp surely ease all the hassle of changing the proxy, but the issue comes when handling session-based or multiple role website.

One need to logout, login with another credentials/role, logout again to verify with another. Too much work!

Solution

PwnFox a burp extension can be use to solve those limitation. It linked with a firefox browser so you need to have it installed.

Written After

I don't think I can write any more than this, seems like a paid review of some sort. But if you're interested, here's the link.