• Introduction To Web Proxies

Burp Suite

• Directory Enumeration With Intruder
• Attacking Basic Auth With Intruder & Encoder
• Code Injection with Repeater

OWASP ZAP

• Directory Enumeration with Forced Browse Directory
• Active Crawling with Spider
• Active Vulnerability Scanning with Spider & Active Scan
• Attacking HTTP login forms with Fuzz