Burp’s Session Handling Mechanisms

(this abstract is from an external source)







Web applications, nowadays, handle sessions and state by implementing session expiration and sessionid lifecycle in a more secure manner to avoid security issues such as session hijacking. They will invalidate your session based on idle timeout or absolute timeout as suggested by OWASP.



Read more => http://resources.infosecinstitute.com/burps-session-handling-mechanisms/