Burp Suite User Forum
On version 1.x I was able to cycle through intruder windows with command+` on OSX. This now only seems to cycle back and forth between the last intruder window to be opened and the burp main app window,
The character 'ñ' encoded to base64 is 'w7E=' but on decoders is encoded as '8Q==' as well as the character 'Ñ' that is encoded in the decoders tab as ''0Q==' but the correct encode is 'w5E='.
When the SSL Pass Through function is used in combination with an upstream proxy server proxy, the proxy is used incorrectly, causing the proxy to deny TLS connections that are passed through. Expected behaviour would be...
Hi team, I am using burp suite v2.1.05. Regarding the result that burp suite showed about Cookie manipulation (DOM-based), I would like to ask you what it means below: Because I can't find any cookie manipulation...
Even though I added the Burp certificate as I used to do, it seems that Google Chrome doesn't work properly with Burp's certificate. This is a screenshot of Security tab of Chrome https://imgur.com/a/c7GI8PG I'm...
Hello every one, I am facing a poblem. I found a Reflected XSS and report it but they dont accept it . They said ---------------------------------------------------------------------------------------- Thank your for...
Hello, While doing I scan / crawl of a website, I noticed that Burp 2 makes 4x time the same HTTP requests for each crawl action. for instance it will query /robots.txt four times, this happens also when setting the...
A few days ago I purchased a Burp Suite Pro license and have still not received an email with the key. Yesterday I sent a support ticket in but have not received any confirmation email or response. I have been using a proton...
Hi I get this error message while running BurpSuite: Software caused connection abort: recv failed Would you please help me resolve the problem? Thank you
Hi, This lab: Exploiting cross-site scripting to steal cookies, might be broken. I can only get my own session cookie sent to me, even with the proposed solution. It seems that the admin is not reading the comments.
The verb 'MOVE' doesn't show up in the Burp proxy history. It only shows up in the 'Flow' plugin.
when i browse any url i am getting another url response...
Hi Burp-Team, I have noticed a bug in the Match / Replace Intruder processing rule. I wanted to replace the character " with \". I have tried multiple variants to achieve that but always ended up with a different...
"Lab: Basic SSRF against another back-end system" does not work The lab redirects to an error site FYI
Burp Suite Pro 2.1.03 keeps causing 100% CPU utilization when running an audit scan (earlier known as scanner). The scan task works for approximitely 2500-3000 requests after which it stops. Stopping the scanner does not...
I am getting too many false positives of "Content type incorrectly stated" vulnerability all the time. My last occurence is: '''The response states that the content type is font/x-woff. However, it actually appears to...
1) The scanner very often shows that a scan is completed by showing full bar and by text also, while the number of requests is increasing and actually the scan isn't completed. 2) The scanner very often shows that a scan...
If you crawl, the Response status code displayed on the site map is changed from "301" (redirect) to "200" (no redirect). When Crawl is executed, the contents of Response will be the contents after redirect. Originally,...
hi, I attached a docx file with simple content (like some lines) in it, then sent the request to intruder and one to repeater from intercept (proxy) part for further investigating of request, it seems some character in the...
Burp Suite constantly gives me issues but today is probably the worst. It won't send any requests to any site period. Proxy intercept is off and I have tried sending simple GET requests to google.com using repeater which...
Page 108 of 141
Your source for help and advice on all things Burp-related.