Burp Suite User Forum

Login to post

Export sequencer results

Hi, Is sequencer results are exportable or copyable ? Cheers

Last updated: Nov 24, 2016 08:56AM UTC | 1 Agent replies | 0 Community replies | Burp Extensions

IContextMenuFactory: ICONTEXT_TARGET_SITE_MAP_TABLE only returns Request and No Response

menu.getSelectedMessages(); returns the proper Request/Responses for pretty much all of the locations, except for CONTEXT_TARGET_SITE_MAP_TABLE . For some reason I'm pulling the request with that one, but not...

Last updated: Nov 21, 2016 10:28AM UTC | 1 Agent replies | 1 Community replies | Burp Extensions

byte[] to IHttpRequestResponse

Hello, I have two byte arrays with a HTTP request and response, and I would like to create a IHttpRequestResponse containing them both, I have been trying to do it with no success, could someone help me please? Thank you

Last updated: Nov 16, 2016 08:41PM UTC | 1 Agent replies | 1 Community replies | Burp Extensions

Saving Settings with Multiple Extensions

When I save settings for an extension I use the callbacks like this: mCallbacks.saveExtensionSetting("SOME_NAME", "SOME_VALUE"); But is the saveExtensionSetting method aware of which extension saved it? If I create a...

Last updated: Nov 16, 2016 09:43AM UTC | 1 Agent replies | 0 Community replies | Burp Extensions

updateCookieJar: Domain cannot be null

I have written an extension that submits a login, reads a cookie in the response, and adds it to the cookie jar. The cookie in the response does not include a domain attribute. Set-Cookie:...

Last updated: Nov 15, 2016 09:40PM UTC | 1 Agent replies | 1 Community replies | Burp Extensions

Add a relative url to a scoped domain

I'm trying to dynamically add relative URLs to a scoped domain using the addToSiteMap() method via the python api and am having a lot of trouble. addToSiteMap(IHttpRequestResponse item) It requires an...

Last updated: Nov 10, 2016 06:49PM UTC | 1 Agent replies | 1 Community replies | Burp Extensions

ISessionHandling - use toolflags to find out where the request comes from

Hello, something really cool is, that the IHttpListener interface provides a method: " processHttpMessage(int toolFlag, boolean messageIsRequest, IHttpRequestResponse messageInfo) " where you can use the toolFlag...

Last updated: Nov 07, 2016 08:56AM UTC | 2 Agent replies | 1 Community replies | Burp Extensions

Macro

Hopefully this question isn't too stupid but, is it possible to run a macro from an extension? I'm trying to set up an automation process where burp will run my extension, the extension will run a login macro and then...

Last updated: Nov 04, 2016 02:10PM UTC | 2 Agent replies | 1 Community replies | Burp Extensions

Pasting dynamic generated text into an intercepted HTTP request / response

Hi everyone I am attempting to add a new feature to my extension. Basically I would like to add dynamic generated text (for instance plain HTML) into an intercepted HTTP request or response. Currently I am not sure what...

Last updated: Oct 31, 2016 06:09PM UTC | 1 Agent replies | 1 Community replies | Burp Extensions

ISessionHandling - detect if proxy is clicked in the tools scope (programmitacally) - Java

Hello, I would like to know, if there is a solution for detecting, if the checkmark is clicked on "Proxy (use with caution)" in the session handling rule editor (programatically) ? I am using the ISessionHandling...

Last updated: Oct 31, 2016 10:13AM UTC | 3 Agent replies | 3 Community replies | Burp Extensions

IRequestInfo getHeaders

Why does the getHeaders method return a list<String> instead of a HashMap<String,String>. I think that everyone using getHeaders is now doing extra parsing on the list of strings since the normal usage would be something...

Last updated: Oct 25, 2016 10:25AM UTC | 3 Agent replies | 4 Community replies | Burp Extensions

decoding/encoding http request

Hello, I want to use following request to send it to the server!. /**********************************************/ POST /vaadin_vulnerabilities/UIDL/?v-uiId=2 HTTP/1.1 Host: localhost:8080 User-Agent: Mozilla/5.0...

Last updated: Oct 20, 2016 08:01AM UTC | 1 Agent replies | 0 Community replies | Burp Extensions

Issues running any Ruby dependent extension

I'm trying to run Buby on my MacBook Pro Burp Pro. When trying to load the extension, I get the following error: LoadError: no such file to load -- pp require at org/jruby/RubyKernel.java:1040 (root) at...

Last updated: Oct 19, 2016 06:04PM UTC | 1 Agent replies | 2 Community replies | Burp Extensions

TEst

&#x27;><svg/onload=alert(9)>

Last updated: Oct 19, 2016 06:03PM UTC | 0 Agent replies | 0 Community replies | Burp Extensions

Intruder/Payload pattern-matching algorithms

Hello everyone, I have to "copy" some of the functionalities within burp for writing my own extension. This includes the "Intruder" tab aswell. To be honest the "Intruder" tab in burp is really really amazing. It...

Last updated: Oct 19, 2016 08:26AM UTC | 1 Agent replies | 0 Community replies | Burp Extensions

IHttpRequestResponse - setRequest(byte[] message)

I am currently working on writing my own extension for burp suite: I get an exception when using the "setRequest(byte[] message)"from the IHttpRequestResponse interface, which looks...

Last updated: Oct 17, 2016 09:03AM UTC | 2 Agent replies | 1 Community replies | Burp Extensions

Debug Java-Project

Hello, I am writing my own extension for burp and I was wondering if someone could tell me, if there is a way I can use the debug mode in my eclipse project to detect bugs etc.? The current situation is that whenever...

Last updated: Oct 13, 2016 10:08AM UTC | 1 Agent replies | 2 Community replies | Burp Extensions

Problem with IScanIssue getHttpMessages()

I have users reporting issues with an extension that was working fine in 1.6x but is having a problem in 1.7.04 (I did not try with any earlier 1.7x release). The root cause is that the IScanIssue getHttpMessages() method...

Last updated: Oct 10, 2016 06:53PM UTC | 2 Agent replies | 2 Community replies | Burp Extensions

Modifying message

Hi, I,m writing an extension which decrypt requests and responses and send it to Proxy-Intercept tab. So, I want to modify this message,ecrypt it and send forward, but message what is modified will not changed. In example...

Last updated: Oct 05, 2016 04:58AM UTC | 2 Agent replies | 2 Community replies | Burp Extensions

Burp scanner: how to add support for csrf tokens

I'm having an issue with the Burp Scanner: when anti-csrf tokens are present, it seems the scanner cannot handle it and it faild to perform active/passive scans. Would it be possible through Burp Extension capabilities to...

Last updated: Oct 03, 2016 02:22PM UTC | 3 Agent replies | 2 Community replies | Burp Extensions

Page 21 of 26

Burp Suite Support Center

Your source for help and advice on all things Burp-related.

Burp Suite Support Center image