SSH Socks Proxying and Burp
There's no question about it, PortSwigger's Burp Suite is the de-facto tool for
testing web applications for security vulnerabilities. It's far from a
"fire-and-f0rget" tool, which means that it take a lot of getting used to in
order to make effective use of everything that the tool has to offer.