How do I?

If you've got a general question about using Burp Suite, then this is the best place to ask.

Create new post

View all

Feature Requests

Burp's pretty great already, but could we make it even better? Let us know.

Create new post

View all

Burp Extensions

If your query involves a Burp Suite extension (BApp), then this is the forum for you.

Create new post

View all

Bug Reports

Found a bug in Burp Suite? This is the place to let us know. Our devs will thank you.

Create new post

View all

Latest posts

Burp crawler not finding endpoint on api sites

When crawl scanning APIs with Burp crawler it cannot find any endpoint. for instance If I select the https://api.example.com from the target sitemap and scan crawl it. Then it will find no endpoints.

net.portwsigger.devtools.client.at: Unable to start browser

Chromium browser in proxy tab of burp suite professional will not start. Popup message says: "net.portwsigger.devtools.client.at: Unable to start browser"

What is the best way to go through the Academy learning materials?

I have located the learning path suggestion, but should I finish all of the SQL Injection labs before moving onto Authentication, or should I do just the apprentice SQL Injection labs then the apprentice Authentication, then...

Get local path of burp file via API

I'm looking to be able to save information to the same directory as my Burp project file through a Burp Extension. I organize my project files in folders with respect to the applications I'm testing. There is the...

Copy/Past Not Working

Hello, I have Burp Pro (Version 2022.5.2) on my MacOS Version 12.4. Copy-Paste don't work in HTTP History (Filter By search term) and Repeater (Search bar). Regards. Chris

Web cache poisoning using param miner

https://youtu.be/TQ42N8fqxw4 This video was uploaded on yt by portswigger, I have a doubt that I asked in the comments section, looking for someone to answer it. I am basically not sure about the steps to search for web...

Not able to access http://{Ip-Addr}:8080 remotely

Dear Team, I have configured Burp enterprise in win 2016 server. After compktetion of my installation am able to access burp enterprise through http://localhost:8080 or http://{ip_appr}:8080 inside windows server machine...

Missing parameter in HTTP Smuggling request lab

Hello! I'm trying to solve the lab 'Exploiting HTTP request smuggling to capture other users' requests' but every time that I send the request the second time to smuggle the comment I receive a error message saying that...

Visual Glitches within Burp, on secondary screen

Hello, For the last couple of versions, I have encountered weird visual glitches of Burp Suite. Video showing the issue: https://www.youtube.com/watch?v=BgXuIyel_MI At 0:40, it even shows the content of the other Burp...

username and password word list for pen tester exam do not work

Login unsuccessful when using the usernames and passwords word lists provided by portswigger for the pen tester exam. So, I used cluster bomb in burp intruder with the username and password list provided for the exam. ...

Burp Suite Support Center

Your source for help and advice on all things Burp-related.