Burp Suite User Forum

Login to post

Session management & redirection & Active scan

I have a platform which redirects user to /login page via location header when you are trying to access anything which requires authentication. I have session management set up, with session handling rules to look for...

Last updated: Oct 05, 2017 08:13AM UTC | 2 Agent replies | 2 Community replies | Bug Reports

Intruder payload bug - square symbols between every character

Every intruder attack include square blocks between every characker of payload. This happened sometimes, but now it's important case so i have to figure out why this happens here is pic:...

Last updated: Oct 04, 2017 12:06PM UTC | 2 Agent replies | 2 Community replies | Bug Reports

Intercept Client Requests rules doesn't affect for Redirect proxy requests

In the case of Redirect proxy configuration (Proxy-Options-Edit-Request Handling-Redirect host/port) all the requests will be redirected to that host even a few interception rules were applied. I expect that all the...

Last updated: Oct 02, 2017 09:41AM UTC | 1 Agent replies | 0 Community replies | Bug Reports

Burp Suite Professional v1.7.03 can't create a new project on Windows Server 2012 R2

In Burp Suite Professional v1.7.03 I can't create a new project on Windows Server 2012 R2. Error message: "Note: Disk-based projects are not supported on 32-bit operating systems." I'm using 64-bit operating system with...

Last updated: Sep 22, 2017 09:14AM UTC | 2 Agent replies | 2 Community replies | Bug Reports

Scanner stucks when pausing

Hello, Many times I see that the scanner doesn't send any more requests and the I pause it. However the message "waiting for pause" never disappears and the scanner is only again usable when I close burp and restart it.

Last updated: Sep 14, 2017 08:34AM UTC | 5 Agent replies | 4 Community replies | Bug Reports

burp crash

Hello, after upgrading to 1.7.27 version, in Target->Issues tab, when I have expanded a branch of vulnerabilities and then right click on the main title of the vulnerability and choose all of them to become false positives,...

Last updated: Sep 08, 2017 08:49AM UTC | 2 Agent replies | 1 Community replies | Bug Reports

Shortcut Keys don't work

Hi, The shortcut keys (e.g. ctrl-C, ctrl-v) don't work in the new releases. Please fix. Thanks, Carl

Last updated: Aug 30, 2017 08:19AM UTC | 1 Agent replies | 0 Community replies | Bug Reports

can't install latest archive : gunzip issue

Hi, I have the following error when trying to install Burpsuite : --- gzip: sfx_archive.tar.gz: not in gzip format I am sorry, but the installer file seems to be corrupted. If you downloaded that file please try it...

Last updated: Aug 24, 2017 01:53PM UTC | 3 Agent replies | 4 Community replies | Bug Reports

Cmd Key on mac not working within Burp v1.6.26 (Java 1.8.0_60)

The Cmd key on Mac OS 10.10.5 does not seem to be working within Burp (attempted on multiple Burp versions <=1.6.26), thus hampering the use of copy / paste / select all functions. Below are env details: java version...

Last updated: Aug 24, 2017 09:24AM UTC | 1 Agent replies | 2 Community replies | Bug Reports

java.lang.ClassCastException: javax.swing.plaf.ColorUIResource cannot be cast to javax.swing.Painter

I open burp using Oracle Java 8: $ java -version java version "1.8.0_31" Java(TM) SE Runtime Environment (build 1.8.0_31-b13) Java HotSpot(TM) 64-Bit Server VM (build 25.31-b07, mixed mode) And I got the following...

Last updated: Aug 16, 2017 06:57AM UTC | 3 Agent replies | 2 Community replies | Bug Reports

java.lang.UnsupportedOperationException

Hi guys, I have searched the support center and found a bug similar to this, but have not yet found a solution and my configuration may be different. I am running Burpsuite Free 1.7.03 on Debian Jessie, and I am receiving...

Last updated: Aug 13, 2017 03:08PM UTC | 3 Agent replies | 6 Community replies | Bug Reports

BApp Store Submit Rating Broken

The "Submit Rating" function appears to be broken in the BApp store. When you click one of the stars on the widget, they all turn blank.

Last updated: Aug 09, 2017 02:03PM UTC | 1 Agent replies | 0 Community replies | Bug Reports

cookies with small values length are ignored

I've noticed that missing httponly is not reported for cookies whose values are less than 5 characters long. It this on purpose? Why? thanks

Last updated: Aug 07, 2017 12:58PM UTC | 1 Agent replies | 0 Community replies | Bug Reports

Problem with BurpSuite

After activating BurpSuite, I've used it once to scan some web. Next time I tried to start it, I receive following error: va.lang.ClassNotFoundException: burp.StartBurp at...

Last updated: Aug 07, 2017 10:41AM UTC | 2 Agent replies | 1 Community replies | Bug Reports

Burp Collaborator OOB - HTTP

Correct me if I'm wrong, but using the following payload "@<SNIPPED>.burpcollaborator.net/" to detect Out-of-band resource load (HTTP) will generate huge false positives, as I was able to trigger an issue for every website...

Last updated: Aug 03, 2017 01:13PM UTC | 2 Agent replies | 2 Community replies | Bug Reports

Activation lost after Windows Upgrade

Hi, I just upgraded to the Windows 10 preview and the Burp activation on the machine is gone. Are there any plans to improve the behavior of Burp in this regard? I think it's quite inconvenient to need to reactivate...

Last updated: Aug 03, 2017 12:39PM UTC | 6 Agent replies | 6 Community replies | Bug Reports

Temporary file disk usage and dedicated temp file drives

Burp Suite's temporary files can rapidly consume disk space when Intercept is off and traffic is high. This is true even when the resource-conserving option "Don't send items to Proxy history or other Burp tools" is enabled...

Last updated: Aug 03, 2017 03:31AM UTC | 3 Agent replies | 2 Community replies | Bug Reports

"Response received" column disappears when "Grep Extract" is used

In Intruder results: - display non-default column "Response received" - add a column based on "Grep - Extract" - the "Response received" column disappeared Not a big deal...

Last updated: Jul 28, 2017 10:47AM UTC | 1 Agent replies | 0 Community replies | Bug Reports

NTLMv2 Proxy Auth not working

Hi, I'm trying to use burp proxy with a corporate proxy that requires NTLMv2, however it doesn't seem to be working. IE, Firefox and Chrome are working fine with it, but burp throws an error saying "Failed to connect to...

Last updated: Jul 24, 2017 08:54AM UTC | 2 Agent replies | 0 Community replies | Bug Reports

Redirects to IPv6 IP addresses are not detected

When a website redirects to an IPv6 address (between square brackets), Repeater will not detect the redirect: - the "Follow redirection" button doesn't appear - the "Repeater / Follow redirections / Always" option isn't...

Last updated: Jul 19, 2017 08:53AM UTC | 1 Agent replies | 0 Community replies | Bug Reports

Page 63 of 77

Burp Suite Support Center

Your source for help and advice on all things Burp-related.

Burp Suite Support Center image