bypass business validation
in chrome there addon that can send a lot of request as same time, is there any way to do that in burp, the purpose is to bypass business validation, for example App must not allow to register more than one user by same ID but as there is no restriction on DB level and the validation only on App level the app going to accept more that user(request) with same ID, so again how to test this scenario in burp please
What’s the Chrome addon? It sounds interesting. Intruder is the Burp tool for sending repeated requests. You could use Intruder to test for this, although you’d need to set up each test manually.
There are a number of extension for testing authoization: Autorize, Auth Matrix, Multi Session Replay. There is also the compare site maps feature within Burp.
Understood. You can do similar within Burp by turning on Intercept.