Burp Suite User Forum
I am not able to get the OpenAPI Parser to work. I keep getting an error message saying that "The OpenAPI specification contained in <file name> is ill formed and cannot be parsed". However, the very same file can be...
Is there an extension of the burp that create UUIDs on payloads?
I am trying to play around with the carbonator feature of Burp using the demo.testfire application as a test run and had a few questions and issues. Issues: I have installed carbonator and using the command " java -jar...
Hi, I would like to know how the "Reparse" button in the request/response "XML" tab reformats XML documents programmatically via Java. Specifically, I am wondering what library(s) are used for this. I am asking for the...
os win 7 java.lang.ExceptionInInitializerError at org.python.util.PythonInterpreter.<init>(PythonInterpreter.java:100) at org.python.util.PythonInterpreter.<init>(PythonInterpreter.java:94) at...
I'm trying to create a simple jython extension to run a regex against the HTTP response and extract key fields into a new IMessageEditorTab. Is there anyway in IMessageEditorTab.isEnabled or...
Hi, I am working on creating a extension for burp suite where a user can choose from a list of payload lists [one list for angular payloads, one list for react payload] according to the framework of the application he is...
Hi I have added a custom context menu item, which reads the selected text of the currently open request / response. So far so good, however in the history view of Burp, when i have three tabs, i can only differentiate...
Hi All We are trying to automate to test various vulnerabilities like xpath injection,sql injection, Cross-site scripting etc. We have referred the following link...
There are methods in IBurpExtenderCallbacks for sending data to - repeater, - intruder, - comparer, and - spider. Why isn't there one for decoder? When writing a custom message editor with a custom editor...
I built the HttpRequest using buildHttpMessage method and trying to add Cookie and Body param using LegacyBurpExtender.getInstance().getHelpers().buildParameter and addParameter and updateParameter methods and it is not...
Hi Burp Team, Currently we are evaluating the trial version of Burp Enterprise edition tool for security testing in our organization. The requirement is to integrate Burp Enterprise Edition/Pro Edition with Microsoft Team...
Hi, I am testing a Flash application, I cam across AMF and Blazer extender. I would like to test AMF using Blazer, I am looking for a tutorial or some documentation for how to use Blazer. It would be great if you could help...
Hi, I would like to bring up BURP using command line (without any GUI) for automation. Is there a way to bring it up without a project file? If I do not specify the project file on the command line, it will bring up GUI...
Hello, extension AutoRepeater is available in the BApp store as version 1.0 from April, 4th 2018. The latest commit from the original repository https://github.com/nccgroup/AutoRepeater was on July 27th, 2019. Any...
Hi Guys! Any changes in Add Custom Headers extension? It stopped to work on Linux/Windows/1.7 and 2.X Burp versions. (:
Im currently building a burp extension using Jython. At one point I basically get URLs from the proxy Tab and make an additional request with that url+someEndpoint with the Python Requests library. The extension works...
How can I perform an authenticated scan using headless burp?
Hello, may I know whether it is free to install the co2 extension in burp suite professional? thanks
I am writing a random ip proxy extention to handle the problem of bloking ip when exceeding target's request rate limit.But i fount the setHttpService isn't work when the request is https.what can i do now? only open burp...
Page 35 of 50
Your source for help and advice on all things Burp-related.