Burp Extensions - Page 3 - Burp Suite User Forum

File [Save As] Dialog appearing multiple times when saving a log

I am creating a Burp Suite Extension using Java for saving the request/response into a file. The scenario is: 1. Select a log from the [Proxy→HTTP History] 2．Right click, then go to the [Extensions] Menu and select...

Flush Preferences

Hi PortSwigger Team, I'm seeing some odd behavior with both the extensionData and preferences objects in Montoya. I've written an extension that tries to store settings that will persist after reloading the extension or...

while loaad InQL - Introspection GraphQL Scanner

java.lang.Exception: Failed to load Python interpreter from Jython JAR file at burp.Zwex.ZX(Unknown Source) at burp.Z__l.ZL(Unknown Source) at burp.Zs50.Zm(Unknown Source) at burp.Zci.lambda$panelLoaded$0(Unknown...

IBurpExtenderCallbacks.addScanIssue throws an exception with temporary projects

Hello, I'm writing my very first extension based on Extender API (Legacy), and I'm struggling with a weird issue when adding a scan issue within a temporary project. I know there's a new API (Montoya), but I'm using a...

Auto Repeater

Auto Repeater not work burp suite 2023.7.2. (MacOS Intel CPU) I can't display my request on the auto repeater plugin page even though I sent the request to the auto repeater

Browser proxy managed by organization

Hi, I am testing web application and it is supported only on Edge browser. As Edge browser's proxy is managed by organization and we don't have option to change manual proxy setting, I am looking for any extension or...

Can't check if URL is in scope with Burps Custom Scope

I have used the burp-extender-api previously to build an extension to Burp. One of the features of this extension was to check whether a request was in scope. I had the following lines of code to do this: URL...

INQL Installation Error, unable to install INQL

Getting the below error message, when installing INQL JYTHON Version being used: jython-standalone-2.7.0.jar Traceback (most recent call last): File...

BChecks and Montoya

Is there upcoming plans to interact with BChecks with Montoya? E.g. grabbing current BChecks and their tags, perhaps ticking and unticking some based on certain conditions? Thank you

Can't make more than one Markers in applyMarkers

Hello there! I need to make 2 markers in one issue, But while I try to make two markers, I get this error: "java.lang.IllegalArgumentException: Invalid offsets: the list should be in sequence and offsets should not...

Not able to see the externsion list in burp suite pro

Hi Team, I'm facing issue while using the latest version of Burp suite pro V2023.7 The application is not able to load the extension list. I tried to use the refresh list option at the bottom but I get an error "Failed...

OpenAPI Parser Identify parameters in URL paths

Hi, We have a issue that when loading swagger files via swurg extension, "{}" is not recognized as a parameter in burp. The content of file is like: "/api/open/v1/teams/{team_id}/users": { "get": { ...

Create menu bar doesn't work

Hello, I'm currently creating a Java extension with Montoya API and I can't make spawn a menu bar. I tried to copy/paste the example code from the github but nothing happened. Did I correctly understand ? The menu bar...

getting warning pop of like recording will not work in burp as the application uses the platform authentication.

I'm getting the warning message while doing the recorded login sequence of a web appliaction having 2 factor authentication. Warding Message: recording will not work in burp as the application uses the platform...

Update extension Elastic Burp https://github.com/portswigger/elastic-burp

Hey there seems to be issue in installing Elastic Burp extension on windows 11. The author has proposed changes which hasn't been implemented in Elastic BUrp...

SQLMap DNS Collaborator Fail with anti-CSRF

Hi, I tried using the `SQLMap DNS Collaborator` extension with sqlmap using the extra option --dns-domain. However, it doesn't work well in cases that require anti-CSRF Tokens (--csrf-url, --csrf-token & --csrf-retries)....

Set a comment for the request before it is sent out?

Hi there, is possible to set a comment for the request before it is sent out? Or it is possible only when modifying Request inside processHttpMessage()? Thank you.

Extensions are showing blank

Hello, I'm using Burp Suite Professional version v2023.3.3, and I don't see any extensions in the BApp Store. Please suggest.

Import external modules (requests, urllib3,...) errors

Hello, To execute my script I need to import requests module. I indicate to burp my site-package folder to load modules. Once i load my extension into burp, I have this error : SyntaxError: ("no viable alternative at...

Execute code when active scanner starts (only once per scan)

Hello, I would like to know if a method existed to do this. I want to execute my own script with burp scanner, but my script are crafting their own requests and stuff. So I only need my script to be executed once, like it...