Research Academy Daily Swig
My account Customers About Blog Careers Legal Contact

Burp Suite User Forum

Login to post

BurpBounty

Can you tell me the steps how to test "Missing / insecure Content Security Policy" header via burpbounty? I have installed the free version of Burpbounty in my Burp professional. but I did not get any clue how to add the...

Last updated: Mar 26, 2021 09:57AM UTC | 1 Agent replies | 0 Community replies | Burp Extensions

Burp Suite license key

I was uploading downloaded Burp Suite license key but showing an error popup. Please help me how to upload Burp Suite license key.

Last updated: Mar 25, 2021 09:17AM UTC | 1 Agent replies | 0 Community replies | Burp Extensions

WCF Deserializer

I have installed this with a manual BApp install - the extension is showing as installed and active with no errors in the Error tab. I have also put the NBFS.exe in my Burp run folder as described here:...

Last updated: Mar 22, 2021 01:17PM UTC | 1 Agent replies | 0 Community replies | Burp Extensions

Deobfuscate Request/Response in logs

I recently came across an application that obfuscates its request/response field names, I ended up finding the de-obfuscated names in the source and wanted to translate these names automatically to make testing easier. I...

Last updated: Mar 19, 2021 05:00PM UTC | 1 Agent replies | 3 Community replies | Burp Extensions

Crawler internal state tree accessibility (and other things)

Dear PortSwigger support, I was wondering whether it is possible to access the internal tree that the crawler maintains during a crawl. I'm referring to the state trees described in this blog post:...

Last updated: Mar 16, 2021 04:23PM UTC | 1 Agent replies | 0 Community replies | Burp Extensions

IMessageEditorTab getMessage() not changing raw tab in Repeater

Hello, I am building an extension that implements IMessageEditorTab and provides a component with multiple ITextEditors where users can save snapshots of the request. Within each snapshot they can click a button to...

Last updated: Mar 15, 2021 03:47PM UTC | 1 Agent replies | 0 Community replies | Burp Extensions

Getting the warning as below details on executing the jarfile and the process is stuck and nothing happens further. I have a mac on which Burp Suite Professional and jdk 13 are installed. Please help out on the isse

/Library/Java/JavaVirtualMachines/jdk-13.0.2.jdk/Contents/Home/bin/java -Xmx4G -Djava.awt.headless=true -classpath burpsuite_pro_v2021.2.1.jar burp.StartBurp --unpause-spider-and-scanner -c config.xml WARNING: An...

Last updated: Mar 10, 2021 09:23AM UTC | 2 Agent replies | 1 Community replies | Burp Extensions

Reset Activation Limit

Hi Support It seems I have reached the activation limit for my Burp Suite Pro Licence therefore Please reset the limit so that I can continue using the Burp Suite. Also, I would like to the activation limit that we...

Last updated: Mar 09, 2021 12:47PM UTC | 1 Agent replies | 0 Community replies | Burp Extensions

Disable pretty print through Burp Api?

Hello, is there any way to disable pretty print on IMessageEditorTab through Burp Api?

Last updated: Mar 05, 2021 12:02PM UTC | 1 Agent replies | 1 Community replies | Burp Extensions

Burp Extension issue

I am using burpsuite pro v2020.6 i have installed "JSON Web Tokens" extension from bAppStore and it's installed successfully , but its not displaying in proxy and repeater tabs. but its displaying in tabs . what is...

Last updated: Feb 26, 2021 02:07PM UTC | 1 Agent replies | 0 Community replies | Burp Extensions

Drag'n'drop repeater tab events

Hi. I have an extension which allows you to change the colour and font of Repeater tabs, which I'm trying to refine at the moment. Changing the colours is fine, but when a tab is dragged to rearrange the order, or the title...

Last updated: Feb 24, 2021 04:09PM UTC | 2 Agent replies | 1 Community replies | Burp Extensions

IMessageEditorController including applyMarkers?

I am using Sample Burp Suite extension: custom logger as a base to create a plugin, but I noticed that I cannot add the marker functionality (which is used by scanner issues). IHttpRequestResponseWithMarkers...

Last updated: Feb 24, 2021 01:57PM UTC | 2 Agent replies | 1 Community replies | Burp Extensions

Difference in response when active scan initiated via "BURP REST API Extension" and "BURP UI"

Observed that when "Active scan" is initiated via 'Burp REST API Extension', there is no response obtained for a request. However, if "Active Scan" is performed via the 'Burp UI-> Right Click option ("Do Active Scan")' then...

Last updated: Feb 15, 2021 09:28AM UTC | 1 Agent replies | 0 Community replies | Burp Extensions

Extension to get the position of markers

Hi, I'm trying to create a python extension that retrieves the list of markers from the request that is currently on the Positions tab in Intruder. I know I need to use the getRequestMarkers() method at some point, but I...

Last updated: Feb 11, 2021 12:22PM UTC | 3 Agent replies | 4 Community replies | Burp Extensions

ActiveEvent

Hi, HAs anyone figured out how to use the ActiveEvent extension for Burp, to send vulnerability data to splunk? Any advice would be highly helpful. I have followed the instructions on...

Last updated: Feb 09, 2021 05:05PM UTC | 0 Agent replies | 0 Community replies | Burp Extensions

highlight many keyword in the response

I used this code: if (resKeywords.size() > 0) { List<int[]> resp = new ArrayList<>(); for (byte[] msg : resKeywords) { List<int[]> matches = getMatches(response, msg); ...

Last updated: Feb 03, 2021 02:27PM UTC | 1 Agent replies | 0 Community replies | Burp Extensions

Save custom extension settings on project level

I would like to save some Extension specific settings on Project Level. The only options I have seen are: saveConfigAsJson --> Not considered to save custom extension specific settings. saveExtensionSetting --> The...

Last updated: Feb 03, 2021 11:57AM UTC | 1 Agent replies | 0 Community replies | Burp Extensions

highlight many keyword in the response

I used this code: if (resKeywords.size() > 0) { List<int[]> resp = new ArrayList<>(); for (byte[] msg : resKeywords) { List<int[]> matches = getMatches(response, msg); ...

Last updated: Feb 03, 2021 02:54AM UTC | 0 Agent replies | 1 Community replies | Burp Extensions

highlight many keyword in the response

I used this code: if (resKeywords.size() > 0) { List<int[]> resp = new ArrayList<>(); for (byte[] msg : resKeywords) { List<int[]> matches = getMatches(response, msg); ...

Last updated: Feb 03, 2021 02:53AM UTC | 0 Agent replies | 1 Community replies | Burp Extensions

Extension list doesn't appear behind corporate proxy

Dear All, I'm running Burp Suite behind corporate proxy and can't fetch the plugins list, is there any url to be whitelisted in the proxy in order to get the extensions?

Last updated: Feb 02, 2021 12:48PM UTC | 1 Agent replies | 0 Community replies | Burp Extensions

1
2
3 4 5

Page 2 of 25

Burp Suite Support Center

Your source for help and advice on all things Burp-related.

Burp Suite Support Center image