Burp Suite User Forum
Hello, I'm having an issue with the scan functionality on Burp Suite Professional v2020.2.1. The same exact request works with no issues on one of the earlier versions of Burp Suite Professional's scanner, v1.7.37. This...
Hello Support Team on the lab "Basic clickjacking with CSRF token protection" the user name and password "wiener:peter" does not work what should i do??
Lab: DOM XSS in document.write sink using source location.search inside a select element. In this lab the inspect (Q) is not working means, the storedID where mentioned and selected after putting the string in...
BurpSuite Enterprise has been intermittently, about 4 times a day, sending out a email notification of an error/warning which I can't figure out by looking at the logs why? I can't find anything in the forums and any help...
I think that the solution of this lab is wrong in item number 4 [Notice that the file_exists() filesystem method is called on the lockFilePath attribute]. In my opinion, its chain will implement the following flow:...
Hi, so first i checked out how the normal request is send when we are about to change the users email and i found out that the given email parameter value is URL encoded (@=%40). POST /my-account/change-email...
It is annoying trying to input password every time when opening the intercept browser. However there are 2 problems encountered. First is the error that stated my password was incorrect, but I swear it is correct, or...
With the new http/2 normalizing 'feature' I now appear to be unable to use/force HTTP/1.0, which is required for IP address leakage findings: https://portswigger.net/burp/documentation/desktop/http2 I feel there should...
Our DigiCert Certificate works fine in the 'real world', but the Burp Suite Browser says it's not secure: "This CA Root certificate is not trusted. To enable trust, install this certificate in the Trusted Root Certification...
Dear Team, This week, I encountered the problem of that Burp crash when I open any project file (even a temporary one). You can see the video for the...
Hello, Collaborator of the Burp application is not working. Screen: https://i.ibb.co/rHDGWZv/collaborator.png
Since this week, Burp crashes on irregular but short intervals. Completing any intruder attack is hardly possible, but the crashes do not require intruder. At some points, they occur on the loading screen, even with...
Recently I've encountered an issue where my browser will not open, and I get the following error message: net.portswigger.devtools.client.a9: Unable to start browser: [0707/014003.432116:FATAL:v8_initializer.cc(423)] Error...
Hi Team, I am not able to login with below credentials which are provided in Clickjacking module. You can log in to your own account using the following credentials:...
title
I never accepted this and it's on 10 of my phones, tablets , watches. Whatever it is can someone help?
Note: This is the reposting of the request that I accidentally add-in "How do I?" Section Hello, I'm doing Web Security Academy Lab.`Exploiting HTTP request smuggling to capture other users' requests`. But I think...
hello, I got several problems with my vm so i had to reinstall. When I try to load the key i got the message "No more activations allowed for this license" any fix?
hi. i'm reporting on behalf of users of Burp. when text is selected, the insert caret style is still showing up. this is confusing for people, and not standard. is there a way to stop this behavior? thanks.
Login unsuccessful when using the usernames and passwords word lists provided by portswigger for the pen tester exam. So, I used cluster bomb in burp intruder with the username and password list provided for the exam. ...
Page 44 of 142
Your source for help and advice on all things Burp-related.