Solutions for

Products we offer

View all products for teams

Products we offer

Leverage 70% off for Universities

Products we offer

View all products for business

Products we offer

View all products for individuals

Parrot CTFs for Teams

Build cybersecurity talent.

An interactive and guided skills development platform for corporate teams looking to master offensive, defensive, and general security domains.

Read more
Start a free trial

Parrot CTFs for Education

Empower the next generation.

Comprehensive cybersecurity education platform designed for academic institutions to prepare students for real-world challenges.

Read more
Start for free

Parrot CTFs for Students

Start your cybersecurity journey.

Self-paced learning platform with hands-on labs and structured content to help you master cybersecurity skills.

Read more
Get started

Compliance-Focused Penetration Testing

NIS2 Compliance - Penetration Testing & Auditing

NIS2 Compliance

Parrot CTFs helps companies across Europe meet and maintain NIS2 compliance through trusted, transparent, and repeatable penetration testing. Get detailed audit-ready reports, real-world risk insights, and full lifecycle support.

Our NIS2 compliance solution includes:

  • Real-world risk insights
  • Full lifecycle support
  • Comprehensive penetration testing
  • Detailed audit-ready reports
Read more

Job Roles

Industries

Parrot CTFs Use Cases

Customer Stories

Case Study: Jacob Masse passed eJPT, eWPT & eCPPT

Jacob Masse, a cybersecurity enthusiast, shares his journey of passing the eJPT, eWPT, and eCPPT certifications with the help of Parrot CTFs.

Read Case Study

Hacking Glossary

A comprehensive glossary of hacking terms and concepts.

Explore hacking terms

Hacking Cheat Sheets

A collection of cheat sheets for various hacking techniques and tools.

Hang out

Help Center

FAQs, and troubleshooting tips.

Visit Help Center

Introduction to Parrot CTFs

A guide to getting started with Parrot CTFs.

Read Guide
Community
Get Help
From the Blog
report

New release: The latest on CVE-2025-29927 – NextJS Vulnerability

21 Mar 2025, CVE-2025-29927 was made public by Next,js maintainers and this vulnerability can lead to Authentication bypass. This vulnerability is discovered by Rachid and Yasser Allam and possible to bypass authentication if they occur in middleware

View vulnerability report
Company
Contact us
Connect
Why Parrot CTFs?

Join our mission to create a safer cyber world by making cybersecurity training fun and accessible to everyone.

Get started with Parrot CTFs
Featured News

Level Up Your Active Directory Hacking: Parrot CTFs Now Hosts GOAD by Orange Cyberdefense

We’re proud to announce that Parrot CTFs now officially hosts GOADV3 developed by Orange Cyber Defense.

Read more news
Store
Free Trial

Start a free trial

Experience our enterprise solutions with a 14-day free trial.

Get started
Book Demo

Book a demo

Let us show you how Parrot CTFs can help your organization.

Book now
Products
Teams

Products we offer

View all products for teams
Schools

Products we offer

View all products for schools
Business

Products we offer

View all products for business

NIS2 Compliance

NIS2 Compliance

Parrot CTFs helps companies across Europe meet and maintain NIS2 compliance through trusted, transparent, and repeatable penetration testing. Get detailed audit-ready reports, real-world risk insights, and full lifecycle support.

Our NIS2 compliance solution includes:

  • Comprehensive penetration testing
  • Detailed audit-ready reports
  • Real-world risk insights
  • Full lifecycle support
Read more
Individuals

Products we offer

View all products for individuals
Resources

Hacking Glossary

A comprehensive glossary of hacking terms and concepts.

Explore hacking terms

Hacking Cheat Sheets

A collection of cheat sheets for various hacking techniques and tools.

Hang out

Help Center

FAQs, and troubleshooting tips.

Visit Help Center

Introduction to Parrot CTFs

A guide to getting started with Parrot CTFs.

Read Guide
Community
Current Events Affiliate Program Athena OS Discord Community
Get Help
Help Center Contact Support
From the Blog
report

New release: The latest on CVE-2025-29927 – NextJS Vulnerability

21 Mar 2025, CVE-2025-29927 was made public by Next,js maintainers and this vulnerability can lead to Authentication bypass. This vulnerability is discovered by Rachid and Yasser Allam and possible to bypass authentication if they occur in middleware

View vulnerability report
Company
Company
About us Careers Cyber Blog Cert Validation Legal
Contact us
Press Releases Partners Enterprise Sales Billing Support Lab Support
Connect
LinkedIn Discord YouTube Instagram Twitter
Why Parrot CTFs?

Join our mission to create a safer cyber world by making cybersecurity training fun and accessible to everyone.

Get started with Parrot CTFs
Featured News

Level Up Your Active Directory Hacking: Parrot CTFs Now Hosts GOAD by Orange Cyberdefense

We’re proud to announce that Parrot CTFs now officially hosts GOADV3 developed by Orange Cyber Defense.

Read more news
Store
Back to Courses View Course

Burp Suite Basics

In this course, you will learn the basics of web application security testing with Burp Suite, the industry standard tool for manual web application security testing. You'll learn how to use Burp Suite to intercept and modify HTTP(S) traffic, identify and exploit common web application vulnerabilities, and automate repetitive tasks.

General

Fundamentals

Parrot CTFs academy course image

What Is Burp Suite

What is Burp Suite? 

Burp Suite is a Web Proxy used to intercept web application traffic. Burp Suite was developed and is maintained by Portswigger.This tool is used by every pentester daily and is in their toolkit. Some of the main features that burpsuite has besides the main proxy is the Repeater, Decoder/Encoder. Intruder, Comparer, Collaborater, and Burp Extender. Burpsuite is an essential tool for web application pentesters through out this module you will learn how to use every part of burp suite and leverage it to find flaws in web applications and APIs. 


The community edition of Burp Suite should be enough for most penetration testers. However, as we dive deeper into more advanced web application penetration testing, the professional features may be well worth it. In this module, we'll focus on features available in the community and professional editions of Burp Suite. 

 

Burp Suite Pro:

 

Burp Suite Community:


 

What is the main difference between BurpSuite Pro and BurpSuite Community?

You can use BurpSuite Community to do just about anything related to web application hacking; However, BurpSuite Pro makes this much easier and faster. BurpSuite Community is very limited in what you can do. Both can get the job done, it is $300.00 USD a year for a Burp pro subscription, and Community is 100% free. 

Tools available on BurpSuite Pro:

  • Decoder/Encoder
  • Repeater 
  • Intruder
  • Comparer
  • Logger 
  • Burp Active/Passive Scanner
  • All extentions on BAPP store
  • Sequencer


Tools available on BurpSuite Community:

  • Decoder/Encoder
  • Repeater 
  • Intruder ( slow and limited )
  • Comparer
  • Logger
  • Limited BAPP extentions in store

 

Are there any tips I should know? 

Burp Suite offers several valuable shortcuts that can significantly save time during testing. Although their meanings might not be clear at the moment, it's worth remembering them for future reference, as they could be useful while in a time restricted test. 

 

Keybinding  Description of  Keybinding 
CTRL+I
 Sends Current Request To Intruder
CTRL+R
 Sends Current Request To Repeater
CTRL+U
 Url Encodes Highlighted Text
CTRL+SHIFT+U
 Url Decodes Highlighted Text

 

If you are a student or part of a bussiness you may qualify for a free trial of Burp Suite Pro. All you have to do is go here: Burp Pro Trial and enter your student or bussiness email and you may get a free trial of Burp Suite Pro. This will help you follow along with this course module and it is reccomended to have Burp Suite Pro. 

Take Course

Course Syllabus

Ready to start hacking?

Join Parrot CTFs and access our hands-on hacking labs today!

Get Started