Burp Extensions - Burp Suite User Forum

Failed to update Bapp List

Hi, My burp store list fails to be updated. I am using my employer's proxy settings and it may create some conflicts OR block some traffic. Do you have any work around this problem? Do you know how I can investigate and...

Inquiry on Automating Crawl and Audit Scans in Burp Suite Professional

Hello, I am currently using Burp Suite Professional to scan URLs via the REST API. As the API is set to be deprecated, I am looking for guidance on how to initiate crawl and audit scans automatically using the Montoya...

Student license

Hello Burp Suite, I am a computer science student at the university Osnabrueck. I wanted to ask if it is possible to get a burp suite professional license for students. I really like to use your product but I can't afford...

No more activations allowed for this license

Hello, I am facing the problem "No further activations are allowed for this license". I had to format my computer so I forgot to log out and now it is not accepting my license Can you please help me solve this problem...

Montoya API Burp Extension Identifying Help

Hi Team! Recently, I've been developing a burp extension that transforms a highlighted section in burp intruder. This payload is loaded via "Extension Generated" and the "Payload encoding" has been giving me issues as it...

JWT-Editor Context Menu

The JWT-Editor context menu does not seem to work. After installing the extension, I was able to create a new RSA key. Within the JWT-Editor tab there should be a context menu when right-clicking on the key to delete or copy...

Turbo Intruder Headless Error

Good evening, I wanted to run the Turbo Intruder extension in headless mode using only the .jar file. I’ve cloned the repository provided by James Kettle on his GitHub, and I’ve built the source code via the ./gradlew...

Error in install extensions

Hello, I encountered the following error while installing JWT Editor: java.lang.UnsupportedClassVersionError: burp/config/BurpConfig has been compiled by a more recent version of the Java Runtime (class file version...

Get JSON parameter' Missing in Param Miner (BurpSuite Pro v2024.7.6)

I'm using BurpSuite Pro v2024.7.6 with Param Miner (v1.51), and I'm currently trying to discover hidden API parameters. Unfortunately, I'm not seeing the 'Get JSON parameter' function in the extension. Additionally, the...

Unable to load Autorize - Failed to load Python interpreter from Jython JAR file

I have included jython standalone jar file in python environment and have installed autorize but when i try to load the extension it gives me following error. java.lang.Exception: Failed to load Python interpreter from...

Can multiple workflow organizers open multiple tab

hi master，The organizer function is great. I use it to record the APIs I have tested and save them locally using 'save copy'. However, when I am testing project A, if I want to view the organizer records of project B before,...

Organizer log export

hi boss! I want to export the logs that I have collected in 'Organizer' separately. The logs recorded in 'Organizer' are APIs that I think are worth paying attention to, so I want to export this part of the data separately...

Can We Implement a "Create New Group" API to the Montoya API?

Hi there! I'm currently working on a Burp extension that uses the Montoya API. I need to send multiple HTTP requests to the Burp Repeater, and it would be great if I could create a new tab group using the Montoya API....

BApp store not loaded in extensions section

Hi Team, I'm using burp professional v2024.8. I'm not able to see any burp extensions in BApp store. I tried refreshed list and manual install but it's not working. BApp store section is empty. When I click on refresh...

Intruder payload generator sequencing and tracking http responses

My payload generator needs to know the response from the previous payload that was sent. Http request/responses have message ids to correlate, but I can't find a way to reliably track the payload I generated in the...

exam BSCP

Hello! Can I use third party burp suite plugins? like xss validator, or param miner and etc.

AuditInsertionPoint type UNKNOWN used over PARAM_JSON

I am currently creating an extension that registers a burp.api.montoya.scanner.ScanCheck to perform some active and passive scan checks. While working on the active scan check, I am noticing that the AuditInsertionPoint for...

Turbo Intruder ( Import error of a python library - requests module )

https://forum.portswigger.net/thread/turbo-intruder-import-error-of-a-python-library-requests-module-6ae4fd21 My query got unanswered. Please can someone look into this ...

How can I get current burp theme using jython?

Is there any way to get current theme of burpsuite using jython? I tried following method and I got some erros. def currentTheme(self): theme = self.callbacks.getUiPreferences().getTheme() ...

Lab: SameSite Strict bypass via client-side redirect - this lab broken too

This is my solution and works with view exploit, but not working when delivering neither in chrome, not burp. Therefor unfortunately the lab is broken. Can you please fix please? thank...