Recorded logins in Burp Scanner
Login is the gateway to more attack surfaces. Automating the login process allows security scanners to test the features available for authenticated users.
From a user’s perspective, the login process in a website is intuitive. Look for the username and password fields in a fully rendered website, fill in the credentials, answer basic questions (if any, like 5+3=, What is your mother’s maiden name? etc.), and finally click Login.
On the other hand, it is often tricky and not straightforward from a security scanner’s perspective. Some decisions that scanners need to take to log in are:
- how to differentiate registration page and login page (even though both has username and password fields)
- how to log in when a website uses client-side JS frameworks to render the page dynamically
- how to log in if the username field is on the first page and the password field is on the second
- many more…