Burp Suite User Forum

Login to post

Scanner doesn't report previously found issues

When performing a second crawl and audit on the same website, the issues are not included in the results. The detail show that issues have been found in the app header, but they aren't loaded in the results. You'd have to...

Last updated: Jul 03, 2020 10:35AM UTC | 2 Agent replies | 1 Community replies | Bug Reports

It was observed that password and security answers are in plain text when captured the request in burpsuite

Hi Team, We have developed application using .net.It was observed that password and security answers are in plain text when captured the request in burpsuite. how can i avoid showing password as plain text? Please let...

Last updated: Jul 03, 2020 09:44AM UTC | 1 Agent replies | 0 Community replies | Bug Reports

Lab "Exploiting blind XXE to exfiltrate data using a malicious external DTD" failing

Hi Support Team, It looks like this lab is not working pretty fine. I have been a long while trying to solve it. Even more, I went step by step to the solution and the result I am being returned is not being accepted by the...

Last updated: Jul 01, 2020 08:27AM UTC | 1 Agent replies | 0 Community replies | Bug Reports

Unable to reply back to a created forum post

Unable to reply back to a forum post , anti forgery token issue

Last updated: Jul 01, 2020 07:28AM UTC | 1 Agent replies | 0 Community replies | Bug Reports

Web academy lab issue

Victim never makes call to forgot password through exploit url or it is not shown in access log reference : https://portswigger.net/web-security/authentication/other-mechanisms/lab-password-reset-poisoning

Last updated: Jul 01, 2020 07:28AM UTC | 1 Agent replies | 0 Community replies | Bug Reports

Copied Project uses first request in repeater rather than last made

When a project is copied, after loading it, all the requests in the repeater tab use the first request made rather than the latest. This create a very annoying situation when loading it the copied project for the first...

Last updated: Jun 30, 2020 10:23AM UTC | 1 Agent replies | 0 Community replies | Bug Reports

Opening Existing Project Stalls - 2

When we open an existing project and choose a file and click on "open" the application gets stuck over there with "open" button having dark theme highlight. Does not open the project. Need to go back to previous window where...

Last updated: Jun 30, 2020 09:03AM UTC | 1 Agent replies | 0 Community replies | Bug Reports

Password reset poisoning Lab issue

Victim never makes call to forgot password through exploit url

Last updated: Jun 30, 2020 07:22AM UTC | 1 Agent replies | 0 Community replies | Bug Reports

Content discovery is not directly mapped to site map

Hi, Performing content discovery and looking at the Site map of the discovery process one can see that the items found are not reported directly to the main 'Target Site Map'. In many cases and with the current...

Last updated: Jun 29, 2020 08:48AM UTC | 1 Agent replies | 1 Community replies | Bug Reports

Burp Pro API Scan Error

Dear Support, We are facing a problem, not sure if it's an issue or we are doing something wrong. The scenario is the following: 1. We start Burp and REST API Service 2.POST a scan to url "https://example.com" 3.We...

Last updated: Jun 29, 2020 08:02AM UTC | 1 Agent replies | 0 Community replies | Bug Reports

Unable to load JAR file

command to initialise burp: java -Xmx1G -Djava.awt.headless=true -classpath "headless-burp-proxy-master-SNAPSHOT-jar-with-dependencies.jar;burpsuite_pro.jar" burp.StartBurp burp version:...

Last updated: Jun 26, 2020 08:53AM UTC | 2 Agent replies | 1 Community replies | Bug Reports

Why is the Burp Suite JAR file so big?

When Burp prompts me to install an update, it gives me the option of a Windows installer, a MacOS installer, a Linux installer, or a JAR file. The installers are all around 160-180 MB in size: this seems reasonable, since...

Last updated: Jun 26, 2020 08:53AM UTC | 1 Agent replies | 0 Community replies | Bug Reports

My burp suite issues tab is not showing up.

My burp suite community edition's issues tab is not showing up. From what I've seen on youtube, a issues tab should show up on the site map tab without running any scans. Is this a pro edition feature, or is something wrong...

Last updated: Jun 26, 2020 08:09AM UTC | 1 Agent replies | 0 Community replies | Bug Reports

Intercept

Hi, I am new to burp and trying reading the tutorial for username enumeration and I'm trying to solve the lab and it doesn't intercept anything and if i use proxy then i can't run the website. Proxy is working for other...

Last updated: Jun 25, 2020 10:38AM UTC | 1 Agent replies | 0 Community replies | Bug Reports

Burp 2020.5.1 looks blurry

Hi after updating to the 2020.5.1 the burp ui and text look blurry https://twitter.com/d1pakdas/status/1276081498689384448/photo/1

Last updated: Jun 25, 2020 10:22AM UTC | 2 Agent replies | 2 Community replies | Bug Reports

Different scan ID from REST vs GraphQL API

If I initiate a scan using Burp POST REST API, I see even number (scan / task_id) as a part of HTTP response location header but if I initiate a scan using GraphQL API, I see odd number (and wrong scan id) in JSON response.

Last updated: Jun 25, 2020 06:42AM UTC | 1 Agent replies | 0 Community replies | Bug Reports

Missing PHP Code Injection Detection

Hello, I'm using Burp Pro 2020.5 and I have a PHP Code Injection vulnerability on a parameter name (both on GET and POST). The Code Injection does not work on the parameter value. Even if the "Parameter Name" insertion...

Last updated: Jun 24, 2020 01:30PM UTC | 1 Agent replies | 2 Community replies | Bug Reports

Inability to edit text within repeater/intruder

Hi, I am running version 2020.5.1 on a 2019 MacBook Pro 16". When sending requests to Intruder or Repeater, I consistently cannot edit the contents of the request for a time. Eventually this does allow me to do so, but it...

Last updated: Jun 24, 2020 01:30PM UTC | 1 Agent replies | 0 Community replies | Bug Reports

corrupted project files

Burp Suite Professional v2020.5.1 on Windows I previously ran Burp in a Kali linux VM and never had an issue with corrupted project files. Recently using a project I've had to fix corruption just about every time I...

Last updated: Jun 24, 2020 08:32AM UTC | 1 Agent replies | 0 Community replies | Bug Reports

Unable to scan all Urls of site map at once

Hi, I am using Burp Suite Professional 2.1.7. I browsed all urls of a website they were displayed in target site map then i added the host to scope. After clicking on the main url of website, if i scan it through audit and...

Last updated: Jun 23, 2020 12:24PM UTC | 7 Agent replies | 11 Community replies | Bug Reports

Page 4 of 55

Burp Suite Support Center

Your source for help and advice on all things Burp-related.

Burp Suite Support Center image