During web/mobile hacking, I sometimes create a custom server to mock certain responses. But this setup can become quite messy. Does anybody know how to do a clean "request forward" setup with eg. Burp? - "Match & replace" is too limited for complex responses or other file formats - Writing a Burp script is annoying because sometimes I want to use different frameworks/languages in my custom server - Burp "Proxy Listener > Request Redirect" will blindly forward https, so I need to make the server ssl capable - "Upstream proxy" only works if you setup upstream server with ssl as well. Rewriting (and downgrading) links can often lead to errors. I just want to use Burp to terminate SSL and ask an upstream webserver what to respond. CC: @MasteringBurp
See Tweet