Burp Suite User Forum

Login to post

How to invoke a burp enterprise scan with extension from command line / jenkins CICD

Hello, Our organization has a burpsuite enterprise license. We are trying to invoke burp enterprise site (with custom configuration and extension) from jenkins or from REST API - POST screen. I have created a burp...

Last updated: Dec 06, 2021 09:13AM UTC | 2 Agent replies | 1 Community replies | Burp Extensions

Why do my built in lists in Burp have {Base} in the payload and how do I use them?

So, in Intruder if I load certain built in payload lists (like the SQLi one), many of the requests have an entry like "{Base}' or 1=1--", however then the request is sent to the server like: GET /example.php?id=123{Base}' or...

Last updated: Nov 25, 2021 09:01AM UTC | 1 Agent replies | 0 Community replies | Burp Extensions

ip rotate

i have installed the extension IP rotate and require fields. further provided required access key and secret key from aws services. yesterday it was functioning well. but now it is not getting enabled only and at the same...

Last updated: Nov 25, 2021 08:27AM UTC | 1 Agent replies | 0 Community replies | Burp Extensions

SAML Raider "failureInInitialization" with BurpSuite v2021.9.1 Build 10295

Normally, the SAML Raider extension will populate a SAML Raider tab when you select a SAML request in the HTTP History. Now, instead of populating the tab, it shows the error: ...

Last updated: Nov 22, 2021 01:14PM UTC | 2 Agent replies | 1 Community replies | Burp Extensions

Extender callback for getting the currently active project's name

Hello! Maybe I'm blind, but I can't find in the documentation a callback for getting the currently active project's name (set during project set up). I thought of parsing the output of saveConfigAsJson(), but it's not...

Last updated: Nov 22, 2021 11:08AM UTC | 2 Agent replies | 1 Community replies | Burp Extensions

Issue with ATOR Loading an Access Token

I seem to be having an issue with the way that ATOR is pulling an access token from a Request. I have dug into the issue and it appears to not be properly pulling the token and replacing it in my requests. I tried a few...

Last updated: Nov 18, 2021 07:43AM UTC | 1 Agent replies | 0 Community replies | Burp Extensions

Errors when installing python/jython extensions

When installing a python extension such as Authorize I'm getting this error. Traceback (most recent call last): File "/home/myhome/.BurpSuite/bapps/f9bbac8c4acf4aefa4d7dc92a991af2f/Autorize.py", line 9, in <module> ...

Last updated: Nov 16, 2021 09:57AM UTC | 2 Agent replies | 1 Community replies | Burp Extensions

burpsuite

hello, am using MacBook pro M1 and i was able to download Kali linux but the burpsuite is not found on the virtual machine. any help?

Last updated: Nov 16, 2021 09:38AM UTC | 1 Agent replies | 0 Community replies | Burp Extensions

Add burp extension manually

I want to install https://github.com/intruder-io/param-miner this extension manually,how can I make it as a jar file.Thanks in advance

Last updated: Nov 15, 2021 10:07AM UTC | 1 Agent replies | 1 Community replies | Burp Extensions

How to update the Multipart Attributes parameter correctly?

Dear support, I'm working on an extension that modifies the multipart attributes of a file that is uploaded via a multipart request. See the example request below: POST /doUpload.action HTTP/1.1 Host:...

Last updated: Nov 10, 2021 01:14PM UTC | 1 Agent replies | 0 Community replies | Burp Extensions

How to make requests from custom scan checks appear in the Logger tab of the task

Hello, After performing an active scan, I usually go into Dashboard >> "View Details" of the task >> Logger tab to see the requests that were done and how the server responded to them. However I noticed that requests...

Last updated: Nov 09, 2021 02:04PM UTC | 1 Agent replies | 0 Community replies | Burp Extensions

what is the positive or false positive? Or do you need to solve the problem? Cookie manipulation (DOM-based)

I have a question, would you like to know false positive or positive? Or do you need to fix? HTTP/1.1 200 OK Date: Mon, 13 Sep 2021 14:03:31 GMT Server: Apache Strict-Transport-Security: max-age=31536000;...

Last updated: Nov 04, 2021 01:00PM UTC | 0 Agent replies | 0 Community replies | Burp Extensions

intrusive or not

Hi, How do I know if an extension I'm interested in, is intrusive or not. My goal for the time being is to run scan that will not harm the location/DB/code that I'm scanning

Last updated: Nov 03, 2021 10:40AM UTC | 1 Agent replies | 0 Community replies | Burp Extensions

iprotate extensions

hello all i have configured jython and I used my credentials in IP rotate and still not able to rotate ips my IP is not rotating.. Please help

Last updated: Nov 01, 2021 11:15AM UTC | 1 Agent replies | 0 Community replies | Burp Extensions

Error in python burp extensions

Hello everybody, I have this error when try to enable python burp extensions : " java.lang.Exception: Failed to open Jython JAR file at burp.a8h.<init>(Unknown Source) at burp.dhy.a(Unknown Source) at...

Last updated: Nov 01, 2021 09:48AM UTC | 1 Agent replies | 0 Community replies | Burp Extensions

Burp only on one tab row

Hi if you install to many extension Burp create two row tab and change size.backing to one row you have removed some extension. Some extension change burp size but some not. It is any way or options setting Burp only...

Last updated: Oct 27, 2021 01:11PM UTC | 3 Agent replies | 3 Community replies | Burp Extensions

Clean some outdated extinsion 2014

Hi Team I Would like ask about outdated BApp Store extension.It would be good idea if Your TEAM will clean this in Burp.I see some extension was made in 2014 some are not maintain.Why you keep it in Burp . Just get it rid...

Last updated: Oct 25, 2021 08:15AM UTC | 1 Agent replies | 0 Community replies | Burp Extensions

Burp Suite Enterprise Edition

Hi, We had a Burp Suite Enterprise Edition license which was bought at $3999 and expired on 16th September 2021. Now the renewal price for the same license is increased by $1,000 and at $4999. Can you offer the license...

Last updated: Oct 21, 2021 08:45AM UTC | 1 Agent replies | 0 Community replies | Burp Extensions

Param miner rate limit?

Is there a way to set a rate limit in param miner? Or a sleep time between requests?

Last updated: Oct 19, 2021 02:08PM UTC | 1 Agent replies | 0 Community replies | Burp Extensions

Regarding getting the account activated for Order number: FB686C8226

Hi Team, We have processed the payments for the Order number: FB686C8226 via wire transfer. I request you to provide me the package access accordingly. Kind Regards, Priya Ranjan Priya.ranjan@boxxport.com

Last updated: Oct 04, 2021 01:43PM UTC | 1 Agent replies | 0 Community replies | Burp Extensions

Page 2 of 30

Burp Suite Support Center

Your source for help and advice on all things Burp-related.

Burp Suite Support Center image