Burp Extensions - Page 16 - Burp Suite User Forum

Attach a mouse event listener to Burp IMessageEditor UI Component?

Hi, Is it possible to call iMessageEditor's getComponent() to then call AddMouseListener() and override the mouseEntered or mouseClicked methods? My goal is to detect when a user performs a mouse event of any kind in the...

Show two "Request" panes in iMessageEditorTab?

Hi, Question: Is it possible to show two "Request" panes in iMessageEditorTab in the context of Repeater? Problem: I am looking for a solution to send a modified HTTP request with data that is temporarily redacted...

IMessageEditorTab -- Silently revert back to previous request when sending modified request

Hello, My objective is allow a user to edit a request while hiding certain aspects (lengthy texts, etc). I need to revert the redacted texts to their original forms once a user is ready to send the modified request. Is...

Turbo Intruder

I uploaded a Hackvector, but for "Lab: Server-side pause-based request smuggling" I need a turbo intruder. In Extensions is only Hackvector Please help me(

NoPE Proxy Tab wont show

Hello, I'm using Burp suite community Edition v1.7.36 and I have loaded successfully the extension manually through the BApp Store and I have used it for many hours. Now, the NoPE Proxy Tab disappeared and I tried the...

Get scope list

Hello Is there any method can gets scope list or scope length

Use Bouncy Castle in extension

Hi I want to deveplop some function about crypto, so I want to use bouncycastle in my extension，but there were some errors about jce。 the details about my extension: gradle: implementation group:...

burp-batch-report-generator for Enterprise

Does anyone know of an extension for BSE that will allow us to generate and download reports for multiple scans at once? If we have a folder with many scans, is there a way to download reports for all Completed scans...

Is there any way to run another scan profile instead of "doActiveScan" on a extension?

Is there any way to run any other Burp Scan profile like "Audit checks - medium active" instead of "doActiveScan"?

Network Protocol Error

Hello Team, We are doing assessment for one of our internal application. However, whenever we try to intercept the traffic through BurpSuite, application is inaccessible with error: Network Protocol Error. For other...

How to add a shortcut of extension feature

Hello Using the context menu for "https://github.com/portswigger/copy-request-response" every time feels lazy to me. I want to use extension's context menu by shortcut but i can't find related feature in burpsuite...

Burp Intruder Usage

Is is possible to run intruder in such a way that i could set some time delay of like 30 secs or a minute after a specific number of requests..For example let's say I'm running intruder with 100 payloads that generates 100...

http request smuggle (http/2 smuggle probe)

The h2.cl request smuggling lab is straight-forward when performing manually. However, want to make sure the extent to which i can rely on the extension and scanner for detection. When i run the http/2 smuggle probe it...

Burp Intruder consuming all RAM memory

When using Turbo intruder for brute force attack with 29 million passwords, the extension consumes all ram memory in few hours. My laptop has 32GB of RAM. What would be the problem? Why does the turbo intruder store...

addCustomeHeader is not available in rules dropdowwn to select

Hi Team, I have added custom headers in addCustomHeader extention and trying to integrate with session by tagging it to Rules. But when i tried to select extention, its not available in dropdown. Thansk

Failed to Upload Active Scan ++ in Burp Enterprise Edition

I want to add the active scan++ extension to my Burp Enterprise Edition. I've downloaded the active scan++ bapp file from the Bapp store. While trying to add/upload this file in extensions, it says 'Unsupported Bapp...

Burp Suit Professional 2022.3.1 is not supporting HTML tag

Hi team, We have one extension in which we have used HTML tags at different places to add color, font and other html features. Our extension was working fine with Burp Suite 2022.2.4 but after we upgraded to the newer...

Formatinng scanIssue

Hi, I am new to writing extensions in Burp and was just wondering how I can format the scan issues. With the Issue Detail I would like to colour code parts of the message, but whilst the API mention it accepts limited...

Lab: Exploiting HTTP request smuggling to bypass front-end security controls, TE.CL vulnerability

Good morning, The following request in the provided solution did work for me but I don't understand how it's calculated. POST / HTTP/1.1 Host: aca11fb21f25e1e3803a19b400f90012.web-security-academy.net Content-Type:...

About audit and how to judge start and end

Basically, I select one request from the history tab, run the audit, and then start auditing the next request after it finishes. I want to play a sound to notify when Audit (doActioveScan) starts and when Audit...