Burp Suite is the most widely used web security testing toolkit, acting as an HTTP/HTTPS proxy.
# Proxy: 127.0.0.1:8080 # Intercept → modify → Forward # Send to Repeater → test SQLi/XSS manually # Send to Intruder → brute force parameters