How do I?

If you've got a general question about using Burp Suite, then this is the best place to ask.

Create new post

View all

Feature Requests

Burp's pretty great already, but could we make it even better? Let us know.

Create new post

View all

Burp Extensions

If your query involves a Burp Suite extension (BApp), then this is the forum for you.

Create new post

View all

Bug Reports

Found a bug in Burp Suite? This is the place to let us know. Our devs will thank you.

Create new post

View all

Latest posts

repeater via ctl r acting wonky

Hello. I recently noticed something odd. When I send a request to repeater, then send another request to repeater, the second request wont go. I like everything works, but if i need a different repeater tab, no bueno. ...

Exploit Server

good day. how can I set up a test exploit server or if there is any option online that can be used to test the http atacks part. Cheers...

Lab: Username enumeration via account lock

I am trying on this lab with 1 to 5 on payload 1 . I set the invalid password 20 letters long to get response time but my session is keep getting expired when i reach the testing around 400th attack out of 500 in total....

Web Site scanning

Hello, We are trying to scan an Angular/.NET Core application with Burp. It logins and scans a few pages, but fails to scan the entire app. What can we do to ensure it scans the entire app? Thank you. Aleksey

Crawler Not Working / Event Log Attached

I am scanning a website. It has a few radio buttons, some of these buttons point to forms while other buttons point to other pages that have radio buttons and 'Submit'/'Next' button. The event log says no registration and...

Source IP addresses in Proxy/HTTP History

It would be great if an additional column for the source IP address would exist, so we could see which client makes the selected request.

Traffic not flowing into burpsuite from remote machine

Traffic not flowing into burp suite from remote machine,however Traffic is flowing from local machine to burpsuite. Note- All the proxy are correctly configured stil traffic not flowing Can someone help here?

Scans do not show the external service interaction (dns)

When testing an internal web application. The automated scans and a crawl and audit do not show the "External Service Interaction (DNS)" issue. However, when I performed the test manually using the Burp Collaborator Client,...

Burp Extension issue

I am using burpsuite pro v2020.6 i have installed "JSON Web Tokens" extension from bAppStore and it's installed successfully , but its not displaying in proxy and repeater tabs. but its displaying in tabs . what is...

in burp suite enterprise is there a way to pause the scan for a few hours like in the pro version

also some times the internet is disconnected due the slow internet connection and the scan will Fails unlike the pro version. is there a way to force the scan to continue when it fail. also can you add a pause and...

Burp Suite Support Center

Your source for help and advice on all things Burp-related.