Burp Extensions - Page 2 - Burp Suite User Forum

Difference in response when active scan initiated via "BURP REST API Extension" and "BURP UI"

Observed that when "Active scan" is initiated via 'Burp REST API Extension', there is no response obtained for a request. However, if "Active Scan" is performed via the 'Burp UI-> Right Click option ("Do Active Scan")' then...

BCheck SQLi bypass autentication

Hi Hannah, and all Can you answer something for BCheck, how can I check for vulnerabilities in the body of the POST request for example: ``` Content-Length: 33 Sec-Ch-Ua: "Chromium";v="121", "Not...

JUnit test with Burp Extensions

Hi, I'm developing a Burp Extension and want to add some testing. Is there a way to create IHttpRequestResponse objects manual? Or retrieve callbacks during a JUnit test, without starting Burp. I do not really know what...

Jual Dildo Alat Bantu Pria / Wanita Di Jakarta Timur 081211113961 Toko Dildo Jakarta Timur

TOKO ACONG : JUAL DILDO, JUAL ALAT BANTU PRIA WANITA Jual Alat Bantu Pria Dan Wanita Dengan Kualitas Terbaik Watshapp : 081211113961 No Hp Aktif : 081211113961 Biar kami kirim gambar yang sesuai yang...

Suitab Highlight when action is performed in ContextMenu

This is more for the aesthetics of the extension. In a native burp tab, if we sent anything from the context menu, for example : Burp Proxy "Send to Repeater", the "Repeater" tab will light up. So how can I also do...

Sending Request using Montoya API

Hi Guys, Sending requests using the Montoya API based on examples is to use the following : ``` api.http().sendRequest(request2Send) ``` However, when I attempted to send a request, I get the following error...

missing HttpParameterType PATH

Hello, Why is there no PATH HttpParameterType in the montoya API? Is is meant to be included in the URL HttpParameterType?

Unable to access labs, getting 404 Not Found

Today, I am unable to access labs through burpsuit proxy. Yesterday, I was able to access it without any issues. I tried with chrome and mozilla firefox, Both showing 404-Not Found responses for all labs. My Mozilla Firefox...

Montoya API Documentation is not inline with the Montoya test extension

Dear all, I am looking to the Montoya test extension from here:...

Param Miner Rate Limit

Is there a way to rate limit the Param Miner extension when it is installed in Burp Community? You cannot use the Distribute Damage extension for this purpose as it cannot be installed in Burp Community.

I cannot install Hackvertor

I am doing this lab SQL injection with filter bypass via XML encoding. You recommend to install Hackvertor. I cannot install Hackvertor. It says installing and it stays in grey. Please help. Are there another...

Want to View Requests and Responses Simultaneously in Intruder

I've managed to view both requests and responses simultaneously using the following code, but it becomes cumbersome when redirects occur, as it doesn't display the initial request and response. Is it possible to develop an...

Ignore Macro for certain scan

I am currently working on developing a Python extension for active scanning. This extension has the ability to perform various types of scans, and as long as the user has configured macros, there are no issues with the...

Which extensions to use?

I want to perform basic vapt scanning on a domain or subdomains. So which are all the extensions that i can use for basic scanning.

Can We Implement a "Create New Group" API to the Montoya API?

Hi there! I'm currently working on a Burp extension that uses the Montoya API. I need to send multiple HTTP requests to the Burp Repeater, and it would be great if I could create a new tab group using the Montoya API....

Dynamically inserting client certificate

I've created a python extension to scan replies from a certain url for a certificate, and then save it to disk and run a command to convert it to pfx. This all works, I can then manually load it into the Project Options ->...

Cannot clean up configuration

Hi - I added the reshaper BApp, played around with it, and added a Rule for WebSockets containing an "unacceptable code point '–' (0x96)". Now on Loading the extension again (auto on startup or manually) I get an Error...

Extension driven passive audit

I have recently started seeing "Extension driven passive audit" automatically get created while I am testing. I checked the forums and prior release notes and didn't see any good answers to my questions. So here they...

gradlew error - HTTP Request Smuggler

Hi portswigger, When i run this command(gradlew.bat build fatjar or ./gradlew build fatjar), I get this erorr: ``` C:\Users\xxx\Desktop\http-request-smuggler-75a40815a944391bfbefe9c8b70faec1fae3ea21>gradlew.bat build...

Calling Logger through Montoya?

Hey there, I'm trying to create an extension which has a listener attached to the Burp Logger. Every time new requests/responses are logged, the extension will look through the new requests/responses and save the...