Feature Requests - Page 4 - Burp Suite User Forum

Private Collaborator - TLS certificate workflow

Hi everyone, About the installation of a private collaborator server, is there a way to have an automation with let's encrypt to generate valid TLS certificates? I would like to avoid updating the config and restarting...

No Mystery Lab for Prototype Pollution?

Hi, I noticed that there are no mystery labs for Prototype pollution. Not sure if this is just missing or was done on purpose. Would be very helpful if included. Thanks!

Keyboard shortcut in Repeater tab

There is ctrl+f in the Proxy tab which is very handy. Please add this shortcut to Repeater tab as well. Thanks in advance.

Lab and learning material progress

Would like the capability to reset lab(s) and or learning material. In my case, I'd like to re-review the content for note-taking.

Improvement for Burp Organizer

Thanks for Portswigger team by introducing this feature, I have suggestion to improve this feature. Problem: As of now my notes are scattered across repeater, proxy request and organizer. It's hard for my to know what is...

Activation limitations

Hello, we have a block of 60 users in two license groups we have single license seats for all our users. Recently my users have told me that they are running out of activations. Also, where can I find the actual activations...

Can Collaborator provide a list of domain names that I have used? When I reopen the project, I forget the previous domain names.

Additional Field Added to Folders in BurpSuite Enterprise

Hello, I would like to request a new field added to the Folder objects in BurpSuite Enterprise. Our particular use case requires us to sync with a certain hierarchy of teams (each team / parent org would have...

Reload extension button, disable redundant pop-up extension loading window.

Just that. Specially extension reload button, ffs.

Issue Discovery - URIs with creds

Could an auto-detect rule be added to detect creds in URI strings? A naive but performant rule could be: \b((?<proto>\w+)://(?<userpass>\w+:\w+)@(?<domainPath>[\w\.:/]+) or...

Link your profile for social media etc

Hey ive been trying to find a way to send my profile as a reference for potential work aswell as on social media. Is there any function for that? Seems like a dead end tho. Please introduce this feature (if it doesnt exist...

Content Discovery remove items from Queued Tasks

Would be very nice if it is possible to remove items from the "Queued Tasks" in the content discovery to for example avoid unnecessary discovery tasks. Think this one is easy to implement ;)

Static analysis data exposed through Montoya API

Hello, While developing a new Burp extension, I noticed that data related to static analysis is not accessible using the Montoya API. As an example, I have an "Open redirection (DOM-based)" issue in a Burp project with...

Exam

Do you give students a discount for burpsuite practitioner exam ?

HTTP Proxy Mutating Methods

Hi team, I have been using the montoya APIs for quite sometime now https://portswigger.github.io/burp-extensions-montoya-api/javadoc/burp/api/montoya/proxy/ProxyHttpRequestResponse.html One of the things I'd hoped for...

Organizer

In my opinion, the organizer is missing its most important function - organizing. If I want to remember different requests for later in my workflow, I divide them into different categories or put them into groups in the...

Bypassing an account

I have been bypassing accounts for my work ,but since last week burp suite does not intercept and send the code back to me as a user. Please help me know to bypass a 2 FA account

More Granularity For "Filter by status code" Setting

Within HTTP history, you can currently filter by 2xx, 3xx, 4xx, and 5xx. This feature isn't useful because I typically want to see 200, 301/302, 4xx, and 5xx responses - but I don't want to see 201 No Content, 304 Not...

Notification Bell on The Website

Add a notification bell so if a user have created a post, and others comment on it. It will be displayed in the notification or Bell Icon. Much like the Youtube Bell Icon

when we scan using burp suite and enter a url so does it scan the whole project or that particular URL

when we scan using burp suite and enter a url so does it scan the whole project or that particular URL. Do we need to add all the URL in that project, for...