infosecgirls
Appsec
Appsec
  • Introduction
  • Application Details
    • VM - Pre-req
    • Import Virtual Machines
    • Access Mutillidae Web Application
  • INITIAL SETUP WITH OWASP ZAP
    • OWASP ZAP
    • Setup OWASP ZAP
    • Modes
    • Automated Scan
    • Report Generation
  • Initial Setup with Burp
    • Start Burp Suite
    • Add FoxyProxy Addon
    • Add New Proxy In FoxyProxy
    • Configure Proxy Listener
    • Install Burp's CA Certificate In Firefox
    • Getting Rid of Unnecessary Browser Traffic
  • Quick Basics
    • Disable Intercept Mode in Burp
    • Enable Intercept Mode in Burp
    • Send to Repeater
    • Send to Comparer
  • Web Application Pentesting
    • A1 - Injection
      • SQL Injection with bWAPP
      • SQL Injection in DVNA
      • Command Injection in DVNA
    • A2 - Broken Authentication
      • Broken Authentication with bWAPP
    • A3 - Sensitive Data Exposure
      • Sensitive Data Exposure - DVNA
    • A4 - XML External Entities (XXE)
      • XML External Entity (XXE) Injection - Mutillidae
      • XML External Entity (XXE) Injection - DVNA
    • A5 - Broken Access Control
      • Broken Access Control - DVNA
    • A6 - Security Misconfiguration
      • Security Misconfiguration in DVNA
      • Security Misconfiguration in Mutillidae
      • Security Misconfiguration in Security Shepherd
    • A7 - Cross-Site Scripting (XSS)
      • Reflected XSS
      • DOM XSS
      • Stored XSS - Mutillidae
      • XSS - Sending data to remote server
    • A8 - Insecure Deserialization
      • Insecure Deserialization - DVNA
    • A9 - Using Components with Known Vulnerabilities
      • Using Components with Known Vulnerabilities - DVNA
    • 10 - Insufficient Logging & Monitoring
    • References
    • About Us
  • Additional Content
    • Insecure Direct Object Reference
    • Security Misconfiguration
    • Password Guessing Attack
    • User Enumeration
      • Unauthenticated User Access
      • Create a New User
      • Authenticated User Access
      • Intruder: Set Positions
      • Intruder: Define Payload
      • Intruder: Configure Grep - Extract
      • Trigger Attack & Save Results
    • Custom Iterator
    • Null Payload
    • Request in Browser: Privilege Escalation Check
  • Burp Extenders
    • Target
    • Proxy
    • Intruder
    • Repeater
    • Sequencer
    • Decoder
    • Comparer
    • Extender
Powered by GitBook
On this page

Was this helpful?

  1. Initial Setup with Burp

Getting Rid of Unnecessary Browser Traffic

PreviousInstall Burp's CA Certificate In FirefoxNextDisable Intercept Mode in Burp

Last updated 5 years ago

Was this helpful?

  1. Do you see unnecessary traffic in your site map? Are they originating from Firefox browser itself? We need to get rid of these noise.

    ********

  2. To disable capturing of unnecessary browser traffic, analyze the traffic in the "Site map" and identify URL patterns that need to be excluded. In the current scenario, we observe that most of the noise is originating from following two domains:

    • firefox.com

    • mozilla.com

  3. In your Firefox browser, click on "FoxyProxy" icon and select "Options"

    ********

  4. Choose the recently created proxy (named as, "localhost-8080") and click on "Patterns" button.

    ********

  5. In the "Add/Edit Patterns for localhost-8080" window, click on "New Black" button, and edit the "Name" and "Pattern" fields as shown below:

    • 1st Black Pattern:

      • Name: firefox.com

      • Pattern: *.firefox.com

    • 2nd Black Pattern:

      • Name: mozilla.com

      • Pattern: *.mozilla.com

    ********

    ********

  6. Delete the other (default) patterns listed under "Black Patterns". The final screen should look similar to:

  7. Click on "Save" button and select the option "Use Enabled Proxies By Patterns and Priority".

    ********

    ********

  8. Also, disable following browser configurations by accessing about:config in the address bar of your Firefox browser.

    • browser.urlbar.autoFill.typed

    • network.captive-portal-service.enabled

References:

https://www.blackhillsinfosec.com/towards-quieter-firefox/
https://www.blackhillsinfosec.com/towards-quieter-firefox/
Auto-fill
Captive portal