Burp Suite User Forum

Login to post

GRAPHQL

When a LDAP user is logged in under a group with all permissions (scan view,editor etc..) except admin, when the API user calls to createsite, a "no permission page" is displayed for the site when a UI user is already logged...

Last updated: May 19, 2022 03:24PM UTC | 1 Agent replies | 0 Community replies | Bug Reports

Exploiting PHP deserialization with a pre-built gadget chain

Hello I have a problem with this lab, when I send my payload I got a next error: <div class="container"> <header class="navigation-header"> </header> <h4>Internal Server Error: Symfony...

Last updated: May 19, 2022 11:00AM UTC | 5 Agent replies | 3 Community replies | Bug Reports

No more activations allowed for this license

I get this for when I try to move my Burp installation to a new computer at work. Can you please add some more for me. This message is really weird, as you're licensing terms seems to be "yeah, it's a per user license, and...

Last updated: May 18, 2022 08:37AM UTC | 1 Agent replies | 2 Community replies | Bug Reports

Burp Enterprise + Jenkin integrations + site-driven configuration

Dear Team, we are trying to integrate Burp enterprise with Jenkin and site-driven configuration but we are getting the below error in jenkin build ERROR: Build step failed with...

Last updated: May 17, 2022 02:31PM UTC | 4 Agent replies | 3 Community replies | Bug Reports

Failed to find additional rooms after recorded sequence

Hello I have the latest Burp suite professional version 2022.3.7 and have recorded a login session and using it for the scanner. I first crawl unauthenticated and the switches to audit mode. I believe this is normal...

Last updated: May 17, 2022 02:13PM UTC | 1 Agent replies | 0 Community replies | Bug Reports

Extension Options not available in the action menu on Repeater tab

We have the latest version of Burpsuite Pro and have installed a few extensions like CO2 and SQLiPy. However, we are not able to view the extensions options in the action menu on the action button (or the right click).

Last updated: May 17, 2022 07:11AM UTC | 2 Agent replies | 1 Community replies | Bug Reports

No email for Burp Suite Pro Trail

Recently I downloaded and installed Burp Suite Pro Trail but I did not get the email

Last updated: May 16, 2022 01:24PM UTC | 1 Agent replies | 0 Community replies | Bug Reports

Find and Replace Not working

Type: Request Header Match: ^Referer.*$ Replace: localhost Regex Match - checked Type: Request Header Match: "" Replace: X-Bug-Bounty:HackerOne-xxxx neither one of these are being placed in the repeater or...

Last updated: May 16, 2022 10:48AM UTC | 1 Agent replies | 1 Community replies | Bug Reports

Network is unreachable when connected to the internet via Apple USB phone. Burp proxy works normal when using normal router

Hello, I'm having problems using burp when I use my mobile data for testing but not problems at all when using the normal router connection. How do I configure?

Last updated: May 16, 2022 07:22AM UTC | 2 Agent replies | 1 Community replies | Bug Reports

Lab: Web cache poisoning via HTTP/2 request tunnelling

The official solution for this lab does not mention that you need to create a second :path pseudo-header - I realised this in a solution published on youtube. I am not sure why, but if I manipulate the original :path...

Last updated: May 16, 2022 07:12AM UTC | 3 Agent replies | 3 Community replies | Bug Reports

Burp Suite causes display corruption on Mac

Over the past several months I have started to experience intermittent issues where Burp Suite appears to be causing display corruption to other applications, but not Burp Suite itself which initially made it tricky to...

Last updated: May 13, 2022 02:41PM UTC | 1 Agent replies | 1 Community replies | Bug Reports

Corrupt Burp Projects

So recently I've been getting a lot of corrupt Burp project files, basically the last maybe couple of releases with the Plain Java version on macOS. It is causing a lot of disruption as it is loosing a lot of testing data...

Last updated: May 13, 2022 09:24AM UTC | 8 Agent replies | 9 Community replies | Bug Reports

Automatic Backup Fail

My automatic backup fails every time with this error message : "Failed to rename backup file"

Last updated: May 12, 2022 05:42PM UTC | 3 Agent replies | 2 Community replies | Bug Reports

Same code base in 2 Websites but still it shows different Scan report

Hello Support Team; We are running multistore Magento Website for 2 Store. 1 is for US another one is for CANADA. We have same code base in both the website, But while we are doing Burpsuite scan it shows different...

Last updated: May 11, 2022 01:13PM UTC | 1 Agent replies | 0 Community replies | Bug Reports

IScannerInsertionPoint.getPayloadOffsets() causes scan failures when null is returned

Hi, I'm building an extension for scanning custom serialized data and encountered a bug in IScannerInsertionPoint.getPayloadOffsets() From the getPayloadOffsets() JavaDoc: """ Returns: An int[2] array containing the...

Last updated: May 10, 2022 05:15PM UTC | 1 Agent replies | 1 Community replies | Bug Reports

BurpSuite Hangs on macOS Monterey

Hi, I have been trying to get BurpSuite Pro 2022.3.6 to run on my macbook. After I install I try to run and the Burp loading page comes up and then sits there with the spinning color wheel. This happens when I try the...

Last updated: May 10, 2022 03:23PM UTC | 1 Agent replies | 0 Community replies | Bug Reports

License

I purchased a burp pro license on march 5. It has been 5 days and nothing. Not only that but I need this for a upcoming pentest. Speed this process up please this is ridiculous.

Last updated: May 10, 2022 12:44PM UTC | 0 Agent replies | 1 Community replies | Bug Reports

"Support HTTP/2" checkbox not working in proxy settings

Even after disabling "support HTTP/2" in proxy settings requests still have HTTP/2 header and disabling the checkbox does not apply. It is not possible to interact with HTTP/1.1 sites and the following error is...

Last updated: May 09, 2022 10:26AM UTC | 1 Agent replies | 1 Community replies | Bug Reports

Burp scanner using old cookie in requests

Hello, I noticed a weird thing when using burp scanner, let's say I manually crawl an application, I get on a website and starts moving around and my cookie is "sessionid=AAA", then I log out and login again, my cookie...

Last updated: May 09, 2022 08:58AM UTC | 1 Agent replies | 0 Community replies | Bug Reports

About active scan

Hi I scanned OWASP BWA BodgeIt Store. The bodgeit login menu has SQL injection. SQL injection payload: test@thebodgeitstore.com' or '1'='1 However, the scan result is Tentative only. Why isn't it detected?

Last updated: May 06, 2022 01:03PM UTC | 2 Agent replies | 1 Community replies | Bug Reports

Page 5 of 104

Burp Suite Support Center

Your source for help and advice on all things Burp-related.

Burp Suite Support Center image