Below are some examples of configuring and using Burp Suite. For more details, see the Burp Suite help page.

To start using Burp Suite, simply configure your browser to use localhost:8080 as its proxy, and begin browsing as normal. Requests (and optionally, responses) are intercepted by Burp Proxy, enabling you to view and modify them:

If you see an interesting request that you want to investigate further, you can send this to other Burp tools:

You can use Burp Repeater to further modify and reissue a request, and analyse the results:

You can send any request to Burp Intruder to perform an automated custom attack:

You can send individual attack results to Burp Comparer to identify any interesting differences between them:

As you browse the application, Burp Spider automatically builds up a detailed map of the application's content and functionality, without needing to make any requests of its own:

You can send any session tokens issued to Burp Sequencer to analyse the quality of their randomness:

If you identify any opaque data being transmitted between the browser and server, you can send this to Burp Decoder to perform an intelligent decode of the data to reveal any interesting hidden information:

For detailed information about the configuration and use of Burp Suite, see the help page.