Mastering Burp Suite Pro, 100% hands-on

"This is not a book about astronomy; rather, this is a book about telescopes" - PoC||GTFO Volume II

Abstract

This is a training for experienced Web hackers who want to master their toolbox.

Burp Suite Pro is the leading tool for auditing Web applications at large, but also a complex beast where new features get added every few weeks. Mastering Burp Suite Pro, including its newest features, allows testers to get the most out of the tool, optimizing time spent auditing and testing. Work will be faster (hotkeys!) and much more efficient (more tools, more possibilities!). Attendees will also learn to measure and assess the quality of their attacks, a crucial skill in real-life engagements that can make the difference between a false-negative and a critical finding.

Early bird pricing


Discounted price: €2,800
Up to six weeks before a session!


Register early ⏰ Get €333 off 🎁
Contact us for the session-specific coupon

Testimonials

Fantastic training @Agarri_FR! Many useful tips and tricks even for advanced pentesters!

@Synacktiv

If you wanna take your knowledge of BurpPro to next level then @Agarri_FR's training is definitely for you! Personal experience, recommended

@rnmx123

If you think you know Burp Suite, think again and take @Agarri_FR advanced training. Awesome content & tons of great labs.

@_titon_

I've just finished the "Mastering Burp Suite Pro" training by @Agarri_FR. Learned about so many little but important details which will definitely improve my hacking efficiency.

@MrTuxracer

Key learning objectives

Menial tasks (like sharing requests among the different tools, applying common encodings or navigating the GUI) should be as fast and transparent as possible, in order to free time and brain power for harder subjects.

Recurrent tasks (like brute-forcing a CSRF-protected form, frobbing an opaque blob of data, logging-in automatically or doing 1-byte fuzzing of a specific parameter) should be executed without having to think too much about it, thanks to prior rehearsals.

Advanced tasks (like managing a complex state, dealing with a custom format or testing authorizations) should be doable exclusively in Burp Suite Pro, possibly with the help of session handling rules or specific extensions.

All these tasks require testers to live-assess themselves, in order to detect as early as possible any error and to allow for correction and self-improvement.

Format

Each training session lasts four consecutive days and is run in a specific time zone (like "UTC+1" or "UTC-5"). Breaks are 15-minute long.
Days are structured as follows:
  • 09:00 – 12:00: live session (incl. one break)
  • 13:30 – 18:00: live session (incl. two breaks)

Upcoming sessions

  • €3,133

Mastering Burp Suite Pro - February 2025 - French - UTC+1 (European time zone)

  • Closed

February 4th to 7th, 2025 - French - UTC+1 (European time zone)

  • €3,133

Mastering Burp Suite Pro - March 2025 - English - UTC+1 (European time zone)

  • Closed

March 18th to 21st, 2025 - English - UTC+1 (European time zone)

Biography

Nicolas Grégoire has nearly 20 years of experience in penetration testing and auditing of networks and (mostly Web) applications. He is an official Burp Suite Pro trainer since 2015, and trained hundreds of people since then, either privately or during public events.