Burp Suite User Forum
which method I need to use to read the proxy history one by one and do some processing. Thanks, Bhaskar.
Dear ladies and gentlemen I have read about Dom invader , I downloaded burp ver : 2021.6.2 , and i can't see dom invader in the embed browser ! can you help me how to find it ? regards
Hello everyone, how to listen to radio online. Where should I search?
While installing Jython standalone version 2.7.2 (and older versions), I get the error "Invalid JSON configuration found at: P > > > K[] < < < [] []� Pu - Unexpected "PK[0x03]" from [line 1, column 1] to [line 1, column...
Hi, for a bug bounty program, I need to add two X-Headers to all requests. The available extension seems to allow only one custom header to add. How can I add multiple header? Thanks and Regards Holger
I can't readily identify a method with the current API to meet my desired goal. I want a callback to my extension when any Active Scan is completed. Is this possible?
In our company we have an API which waits encrypted body, not just plain text. I want to write extension which will intercept request, encrypt it's body and finally send a request. But it's seems impossible. I tried to...
Hi Team, when I run a scanner using recorded login sequence, I get a error failed to login using recorded sequence. Can you see in this issue and replay asap.
Hi, I tried using IP Rotate extension and I installed all dependencies but when we tried intruder and we monitored the traffic in victim. IP was not changing and it was giving only the AWS attacker IP. I have configured...
Hi PortSwigger Team, I'm writing an extension to make use of the IScannerCheck for an active scan finding. From the description of the consolidateDuplicateIssues method, it appears that this method is run when comparing...
After configuring the extension and closing burp suite pro, the next time I opened it the extension wasn't there anymore. The extension appears to be installed but doesn't show in GUI. I have tried: - insulating...
i want to install CA certificate in DER format with key but i am not getting any of such options. please help me to install CA certificate
Dear Team, I have installed active scan++ and Freddy, Deserialization Bug Finder. It shows my webapp is vulnerable to Detected Desalinisation Jackson with High severity and certain confidence, and in response tab it seems...
root@kali:~/Downloads# chmod +x burpsuite_community_linux_v2021_5_1.sh root@kali:~/Downloads# ./burpsuite_community_linux_v2021_5_1.shUnpacking JRE ... Starting Installer ... ./burpsuite_community_linux_v2021_5_1.sh: 598:...
I am trying to install a few burp extensions but download from BAPP store fails. Have tried using upstream proxy as well. I am using corporate proxy to connect to https://portswigger.net/ but result is blank page. I am...
Hello, When I type special characters (ö, ü, ı etc) in Turkish to the parameters sent in the post request using the turbo intruder, it converts them to characters like Ä ±, ü, ö. Is there any way to prevent...
Hey all! I've been adding a requested feature in Logger++, but have a question about the Burp API, and thought I'd post it here in case others have the same question in future. Logger++ has a "Grepper" functionality, and...
Are there any extensions or helpful documentation out there that might help me to bypass thr OTP attempts. I tried doing an attack but after a few OTP tries, it says I have tried too many times.
I get the following error when I manually install *any* extension: java.lang.ClassNotFoundException: burp.BurpExtender at java.base/java.net.URLClassLoader.findClass(URLClassLoader.java:435) at...
I saw a way to add custom headers to every request in Burp via an extension + session handler rule: (https://forum.portswigger.net/thread/multiple-headers-9e49d8d25cdf99e1769) however I was wondering if I could have some...
Page 24 of 48
Your source for help and advice on all things Burp-related.