Burp Suite User Forum
I'm using Burp Suite Professional v2022.2.4 (issue identified both in Linux and Windows installer version). When I right click on a Target in the Site map and use the option "Passively scan this host" multiple requests...
Hello, Everytime I start a lab, I get the following message and it doesn't start Apologies, the lab could not be started in a timely manner. Please try again or contact us if the problem persists.
Hello, On the Business Logic Vulnerabilities labs, when I register an account and try to log in with that account, I keep receiving an "Invalid username and password." message. For example, in the Inconsistent security...
The walkthrough and video for this lab are for "Password Reset Broken Logic", but the lab does not have a password reset link? It looks like an email reset vulnerability. Please advise :)
Hello, i'm experiencing issues with the DNS resolution of Burp Collaborator FQDNs: > host wee9mi6974jyv6h5tayvi4tv8med22.burpcollaborator.net Host wee9mi6974jyv6h5tayvi4tv8med22.burpcollaborator.net not found:...
I have tried accessing these labs: 1-https://portswigger.net/web-security/file-path-traversal/lab-absolute-path-bypass And I am not redirected instead I get this message: Apologies, the lab could not be started in a...
Hi, Yesterday I installed a fresh copy of Enterprise Edition 2021.11. Overnight it was scanned by Nessus which is reporting... -------------------------------------------------------------------------------- Oracle...
Hello Burp Suite, When i try to access any labs ,it always shows " Apologies, the lab could not be started in a timely manner. Please try again or contact us if the problem persists." Please help me to access the lab
Hi there, First of all thanks so much for the awesome web security academy. I've done many of the labs without problem but strangely with the captioned lab, it just doesn't seem to recognize the fact that my attack was...
Burp 2021.10.2 fails to load opensc-pkcs11.so library when configuring Client TLS Certificate with Java 17.0.1. Error message reads: "Unable to load library - check file is correct and device is installed." It works fine...
Hi - I'm trying to use the Macro Editor's "Define Custom Parameter" function to pull a JWT out of a server response, but the response viewer in the DCP window does not show the entire response. The viewer's display width...
Hi there, I've attempted the <insert subject> lab 2 times. After peeking at the solution it was clear that what I was doing is correct. I leak the User-Agent (tried both collaborator and exploit-server) and I poison the...
# # A fatal error has been detected by the Java Runtime Environment: # # SIGSEGV (0xb) at pc=0x00007f18fc1c5b0e, pid=6362, tid=6421 # # JRE version: OpenJDK Runtime Environment (16.0.2+7) (build 16.0.2+7-67) # Java...
Hi, Are Burp Suite Professional and Burp Suite Enterprise vulnerable to these spring vulnerabilities: https://tanzu.vmware.com/security/cve-2022-22965 https://tanzu.vmware.com/security/cve-2022-22963 Thanks. D.
The string 'XPath' happens to appear in our HTML response as a part of the Google analytics payload and that section has nothing to do with XML or XPATH. In fact, we are returning the word "XPath" explicitly in the...
Hi The burpsuite session is killed when in middle of the active scan . I have launched the tool with command line java -jar -Xmx4g /path/to/burp.jar I'm running burp on Debian GNU/Linux 11 (bullseye) java -jar...
Hello Burp Support team, Currently, I'm using Burp Suite enterprise edition - when I schedule scans in the night hours, we are observing that Burp Scanners are getting deleted automatically from Burp Server. We have...
When sending a request to intruder, if the request body is really long and scrolls outside of the window to the right, the text disappears when scrolling to the right to view it. This only seems to happen to the message body...
Hi PortSwigger, loving your labs! However; I noticed a spelling error on your page! "we've mitigated this by included a trailing parameter" - when it should be: "we've mitigated this by including a trailing...
Getting this problem in the lab - https://portswigger.net/web-security/authentication/multi-factor/lab-2fa-simple-bypass
Page 51 of 142
Your source for help and advice on all things Burp-related.