Burp Suite User Forum

Login to post

Latest posts

Out of scope requests still showing up

I thought I changed all the settings to get burp to only intercept requests for the target. However, other requests from outside of scope are still being intercepted. I have to click through all these requests and it is...

Last updated: Mar 24, 2023 07:18PM UTC | 1 Agent replies | 1 Community replies | How do I?

mem

mom

Last updated: Mar 24, 2023 07:18PM UTC | 0 Agent replies | 0 Community replies | How do I?

NTLM authentication brute force

I want to conduct a brute force attack on a NTLM app authentication login form. For some reason I a not intercepting the login requests. How do I intercept the login requests? I have noticed that when people ask...

Last updated: Mar 24, 2023 03:55PM UTC | 1 Agent replies | 1 Community replies | How do I?

No more activations allowed for this license

Hi!! Unfortunately I have had to reinstall my pc on several occasions and now when I try to install burp suite, I get the error "No more activations allowed for this license" Could you help me...

Last updated: Mar 24, 2023 02:35PM UTC | 12 Agent replies | 12 Community replies | How do I?

Request Smuggling - Lab does not work

Hi there, when I try to send request smuggling it does not work at all. Request; POST / HTTP/1.1 Host: 0a5900b7040dfb4fc1db8f1c005d0093.web-security-academy.net Connection: keep-alive Content-Type:...

Last updated: Mar 24, 2023 01:31PM UTC | 2 Agent replies | 2 Community replies | How do I?

To get a refund

Hi, As we are not using Burpsuite for a long ago, and it was auto-debited, it's our humble requesting to provide a refund for the same.

Last updated: Mar 24, 2023 11:57AM UTC | 1 Agent replies | 0 Community replies | How do I?

Lab: Exploiting clickjacking vulnerability to trigger DOM-based XSS does not work correctly

Hi! A correct POC (generated by Burp Clickbandit, tested in Chromium Version 111.0.5563.64 (Official Build) (arm64)) does not solve the...

Last updated: Mar 24, 2023 11:10AM UTC | 2 Agent replies | 1 Community replies | Bug Reports

Lab: Cache key injection

Dear team, the lab https://portswigger.net/web-security/web-cache-poisoning/exploiting-implementation-flaws/lab-web-cache-poisoning-cache-key-injection can be solved in a simplier way than it is supposed to be. The...

Last updated: Mar 24, 2023 10:35AM UTC | 1 Agent replies | 0 Community replies | Bug Reports

Http Request for Fake Shopping Site

I went via labs, using the built in Chronium Proxy, some how when on the page when I followed the link https://portswigger.net/burp/documentation/desktop/getting-started/modifying-http-requests.. the page does not load or...

Last updated: Mar 24, 2023 10:01AM UTC | 1 Agent replies | 0 Community replies | How do I?

DOM based Link Manipulation false positive

Portswigger, We currently use the enterprise version of burpsuite, currently we have a method of determining if DOM based Link manipulation are false positives or not, we would like to receive some feedback from a...

Last updated: Mar 24, 2023 08:51AM UTC | 1 Agent replies | 0 Community replies | How do I?

Burp Suite Support Center

Your source for help and advice on all things Burp-related.

Burp Suite Support Center image