Don’t worry I am re-recording this video very very soon! And will have an updated quality

@@InsiderPhD Okay, I will be waiting for that. Once again Thank you.

Kron98 Yes for sure, I was actually using OBS but I think it over optimised and gave me a low quality video, I tried to re-record but didn’t like the take as much, oh well next video will be HD for sure :)

It is free and super easy. Let me know if I can help!

going to say the same but anyway Thank you!!

Please reply me.

Here you go: portswigger.net/support/burp-suite-upstream-proxy-servers it’s called an upstream proxy, the link shows you how to set it up, but burp can forward requests through another proxy, so requests go you -> burp -> proxy

Don't assume that every bug has already been found, the more experienced bug hunters automate a lot and that leaves plenty of bugs that require more work, such as IDORs or Business Logic. I found my first bug at a live hacking event where I was competing with some of the best bug hunters in the world, not to mention the target's public program. To learn I think there's only one way, hack things, start bug hunting as soon as you're comfortable (using Burp or know a few bug classes), hell start when you're not comfortable. You will learn so much en route to finding your first bug than you ever will from months of video watching or article reading. Obviously, there's a lot to learn, but you don't need to learn everything and there's no critical knowledge mass you need to reach to start. Immerse yourself into the community, join communities, get to know people, watch videos, follow people on twitter etc.

@@InsiderPhD thank you.. 😊 One more question... which bounty program is best for beginners, which is the most easiest bug in 2020 ? I meant which bug do I need to concentrate thoroughly !!!

@@notramin APIs are really great, OWASP has just produced the OWASP API top 10 owasp.org/www-project-api-security/ so learning those bugs and looking at mobile apps w/ APIs I think is a great start for beginners

I skipped that bit because there are a lot of other tutorials on that part, but thanks for the comment I will make one too :)

@@InsiderPhDBut that was only half of the problem. Certificate! However I found tutorial on burp website how to install certificate.

your proxy server i.e. burp suite is running on localhost on port 8080 by default ... so unless you direct all your traffic through your proxy server, it won't be able to capture those traffics .... hence our browser is set to direct all those traffic through localhost where our burp server is running ... hope this helps :D

@@pawanprjl hey man thank you..burp suite is quite intimidating for noobs So we can directly say that the burpsuite is running on our local host and and if I did some bruteforce attack on some website then it will not going to execute the actual attack on the main server but on the localhost only?

@@shreyabanerjee1684 no the attack will be executed on actual server of website, its just that burp suite is the path through which you are sending packets, and you can view those packets through burp and modify it .... its like you are sending a parcel to a friend through a parcel company, but parcel company can view and modify what you send to your friend and what your friend sends you back.

@@pawanprjl hey so this means I can only test those website which gives the permission to do testing ..other than that it will be illegal! So can you tell me any method so that I can test any website and it will not be illegal afterall! Are you a cybersecurity enthusiast?

@@shreyabanerjee1684 you can get involved in bug bounty programs where you will find a lot of sites who are welcoming hackers to check on their security ... or before performing any testing, you can ask permission for testing with owner of the site, and if you are granted with permission, you can carry on with that.

I am clicking "Add §" to set intruder to place our payload in that place. So every item from our list will be in that position when intruder runs. So if our list is: "yellow, green, blue" and we have "colour=§my col§", it sends 3 requests "colour=yellow", "colour=green", "colour=blue"

Katie?

@@InsiderPhD I am having huge crush on U 😻 such a sweet tone u have..🐻

@@InsiderPhD long live Katie the teddy bear girl 🐻

camera was low on battery, so a potato had to be used and was nearby.