How do I?

If you've got a general question about using Burp Suite, then this is the best place to ask.

Create new post

View all

Feature Requests

Burp's pretty great already, but could we make it even better? Let us know.

Create new post

View all

Burp Extensions

If your query involves a Burp Suite extension (BApp), then this is the forum for you.

Create new post

View all

Bug Reports

Found a bug in Burp Suite? This is the place to let us know. Our devs will thank you.

Create new post

View all

Latest posts

HTTPRQ Lab - Exploiting HTTP request smuggling to deliver reflected XSS

Hey guys, I hope you're all well today. This seems to be a pretty interesting bug! I have no idea what is going on, but while trying to solve this lab, something seems to have broken in the back-end, and now every time I...

Crawl was configured to use embedded browser, but a browser could not be started

My system specifications meet the minimum requirements for 2 Agents (BPS-enabled). I'm still getting this error.

exploit server

Hi, How do I create an exploit server (like the one in portswigger.net academy) to use for pen-testing of real client's website? In other words, what do I need to be able to craft an exploit that is send to a...

Burp - Target - Actively scan this host times out

Hello, Starting a new scan from dashboard with Crawl or Crawl and Audit works fine. However If I go to target and use "Actively scan this host" it will time out after some requests. What can I do to mitigate this? Tried...

Burp Enterprise - Webgoat scan

Hello guy's ! I have burp enterprise demo version ( we bought the full one but on the development server I use the trial version) and start a scan on Webgoat. It seams to me that the scanner don't connect to the...

Import Burp Professional scan into Burp Enterprise

I would like to be able to import a burp scan (pro) into Enterprise, to use the tracking metrics and reporting features of Enterprise. Is this possible already?

os error in upload scanner

------------------------------------------------------------------------ Traceback (most recent call last): File "<string>", line 1, in <module> OSError: (22, 'Invalid argument',...

os error in upload scanner

------------------------------------------------------------------------ Traceback (most recent call last): File "<string>", line 1, in <module> OSError: (22, 'Invalid argument',...

Burp Collaborator | 'Poll Now' Function Not Working

Hi, I am trying to complete the 'Blind SQL injection with out-of-band data exfiltration' PortSwigger Academy Lab but cannot get the Burp Collaborator Client to work. I have looked at various solutions to this lab online but...

Empty report from burp extension after migrating to 2020.12.1

Dear all, Context: We have created a Burp extension heavily inspired from the VMWare Burp rest api extension (https://github.com/vmware/burp-rest-api). Basically the extension offers a few REST APis entry point in order...

Burp Suite Support Center

Your source for help and advice on all things Burp-related.