nerdexam
EC-Council

312-50V13 · Question #384

When you are testing a web application, it is very useful to employ a proxy tool to save every request and response. You can manually test every request and analyze the response to find vulnerabilitie

The correct answer is C. Burpsuite. Burp Suite is a comprehensive web proxy tool widely used for web application security testing, allowing for the interception, modification, and analysis of HTTP requests and responses.

Submitted by obi.ng· Mar 6, 2026Hacking Web Applications

Question

When you are testing a web application, it is very useful to employ a proxy tool to save every request and response. You can manually test every request and analyze the response to find vulnerabilities. You can test parameter and headers manually to get more precise results than if using web vulnerability scanners. What proxy tool will help you find web vulnerabilities?

Options

  • AMaskgen
  • BDimitry
  • CBurpsuite
  • DProxychains

How the community answered

(54 responses)
  • A
    4% (2)
  • B
    2% (1)
  • C
    93% (50)
  • D
    2% (1)

Why each option

Burp Suite is a comprehensive web proxy tool widely used for web application security testing, allowing for the interception, modification, and analysis of HTTP requests and responses.

AMaskgen

Maskgen is not a recognized web application security testing proxy tool.

BDimitry

Dimitry (Deepmagic Information Gathering Tool) is an information gathering tool, primarily used for reconnaissance, not as an intercepting web proxy for vulnerability testing.

CBurpsuiteCorrect

Burp Suite is a well-known integrated platform for performing security testing of web applications, featuring an intercepting proxy that allows testers to capture, inspect, and modify all traffic passing between their browser and the web server. It provides various tools for manual and semi-automated vulnerability discovery, making it ideal for the described scenario.

DProxychains

Proxychains is a tool that forces any TCP connection made by a program to go through a list of proxies, primarily for anonymization or evading firewall rules, not for intercepting and modifying web requests for security testing.

Concept tested: Web application penetration testing tools

Source: https://portswigger.net/burp/documentation

Topics

#Burp Suite#web application proxy#vulnerability testing#penetration testing tools

Community Discussion

No community discussion yet for this question.

Full 312-50V13 Practice