Automatically change value of request parameter

  1. Go to Proxy -> Options
  2. Click Add under Match and Replace
  3. Specify the value to match and the value to replace, such as: Match: uid=bob and Replace with: uid=evilbob
  4. This can be done with regex if you’d like, for example: Match: ^Host:$ and Replace with: to rewrite the host header.
  5. Feel free to add a Comment: to lend it some context.


Extracting useful info from responses

  1. Run your attack
  2. Find stuff you want to grep out
  3. Click Options
  4. Go to Grep - Extract
  5. Click Add
  6. Search for the item you want to grep out, click the > to highlight it
  7. Make sure the Start after expression and End at delimiter match a pattern that will consistently get you the data you want
  8. Click OK
  9. Clear out the other columns you’ll see by clicking the Clear button under Grep - Match
  10. Click the Results tab, observe the item you wanted to grep as a column

Export output to excel

  1. Click Save -> Results table
  2. Specify the columns that you want in the document, and click Save


Setting proxy for specific sites

If you’re behind a proxy and having a lot of wait time when you navigate a site that is using an external resource like

  1. Click Project options
  2. Click Add under Upstream Proxy Servers
  3. Set Destination host to
  4. Set Proxy host to your internal proxy
  5. Set Proxy port to your internal proxy port
  6. If there are authentication settings for your proxy, be sure to set those too
  7. Click OK when done

Stop detectportal requests

This is a firefox specific tip.

  1. Navigate to about:config
  2. Set the value of network.captive-portal-service.enabled to false.