Burp Suite User Forum
For support requests, go to the Support Centre. To discuss with other Burp users, head to our Discord page.
Hi i'm testing a an application who send his data in json format but scanner from burp is not testing correctly... all payloads send from scanner are place it outside the json post. Ex: {"test":"somedata"}' and...
When I load Burp in OS X, I have to click through the project wizard and the config loader screens every time. In the config loader screen, the default is 'Use Burp defaults' then there's a checkbox 'Default to the above...
Hi, I found an issue in the export functionality of Burp Suite Scanner. In detail, the XML export of the issues obtained using the "Actively scan defined insertion points" functionality of the Intruder tool have the...
Hi, I downloaded burpsuite_community_windows-x86_v1_7_34.exe version today and was worried that Virustotal flags this program with 2 possible virus/adware. Any explanation on why Virustotal thinks that the program is...
Hello, I have noticed that burp will become unresponsive when canceling a large amount of scans, deleting large amount of information from targets, or deselecting all Scan Issues in scanner options. By large amount, I...
This feature should be restricted by licence, not by the type of project that's currently open. If that model is continued, however, the settings should be applicable at the project level, not globally.
When you send a new item to repeater in burp suite a new tab is created and the content from the old one is preserved. This is especially useful since it allows you to keep a history of actions. The same cannot be said for...
When I create some ticket in web GUI = Public post, for a couple of months now I'm taken to the 2nd step, but the Topic automatically changes as well as the subject, which includes message. I'll try to upload screenshot for...
Suppose, we have a GET request and a PUT request with the exact same URL. GET https://test.com/xyz PUT https://test.com/xyz Only one of them( the one that is intercepted/invoked last) gets added to the...
Occasionally, an input suggestion box is not destroyed if an item is not selected from it. It then stays on screen on a higher layer than the window that created it, if this is the main Burp window then it gets quite...
Hi, I'm using an iMac with the Proxy Listener set up and have set it up correctly on my iOS device. I can see some of the http history appearing in the listener when websites are browsed in the browser, although it is slower...
Our Burp Suite (latest professional, default settings, no extensions) "Site map" shows an inconsistent behavior for displaying or hiding requests (without filter, i.e. "Showing all items"). According to the documentation...
Dear Sir, I saw that the burp collaborator support upstream proxy during the healt check, in my current setup the health check is fully green. Using our collaborator server. But the in the alert window I continue to...
It seems that the In-Scope defining doesn't allow defining scope using only rules that exclude addresses. A way to circumvent this seems to be to make a single include rule for IP-address range 0.0.0.0/0.
I've tried using the "discovery" feature but tend to find it's not particularly useful because of its tendency to regard common methods of redirecting to login forms as a "success", meaning it fills the site map with false...
test
test
test
test
The formatter thinks "<base>" need a close tag, but actually "base" is an empty element, as explained in https://developer.mozilla.org/en-US/docs/Web/HTML/Element/base clearly. Everything under "<base>" should not have...
Page 137 of 155
Your source for help and advice on all things Burp-related.