Topic starter
A payload = the value(s) that Burp automatically places into selected parts of a request during an attack.
In the context of Burp Suite, a payload in Intruder is the data you want to insert into a request to test how the server responds.
Types of Payloads
- Simple list – Manual wordlist (most common)
- Runtime-generated – Numbers, dates, patterns
- Custom payloads – From files or scripts
- Brute-force payloads – All combinations
Why Payloads Matter
Payloads help you:
- Test for weak passwords
- Find SQL injection / XSS
- Fuzz parameters
- Discover hidden behavior
Posted : 07/04/2026 3:21 am
