Burp Extensions - Page 4 - Burp Suite User Forum

Burp Fails to add Jython.jar

I downloaded and installed Jython-2.7.0 following the link provided by Burp. I try to add this one to Burp and facing the error message: java.lang.ClassNotFoundException: burp.BurpExtender at...

Mobile Assistant for Jailbroken Devices Not Working!

Hello, I installed the mobile assistant on my iPhone XS Max, iOS 14.8, unc0ver jailbreak and need to test some apps the tweak installed but i have 2 problems which is: 1- the CA Certificate showing "Not installed" and...

Burp embedded browser - Chromium

Hello all, I am using Burp pro version: V2021.12.1 on Windows 11 Pro version: 10.0.22000 Build 22000 On every website I am trying to log in with the embedded browser I am getting errors, for example: On Gmail: "Your...

whether Apprentice level is enough to pass burp exam?

How can I move burp extension folder elswhere ?

My username on this computer has a non ascii character in it, this causes problems to load any python extensions. I can't change my username on the computer (company policy T^T) so the only for me to load any python...

Loading external jars from extensions

Hello, I am building a Burp extension and I would like to incorporate external JARs, for example the gson library to store some settings in a file. For the life of me I can't figure out how to get this configured...

Unable to access labs, getting 404 Not Found

Today, I am unable to access labs through burpsuit proxy. Yesterday, I was able to access it without any issues. I tried with chrome and mozilla firefox, Both showing 404-Not Found responses for all labs. My Mozilla Firefox...

Python extension works with new header but unable to replace existing header?

Hey all, I was wondering if I could have some help with this extension. I have been able to pull my existing Cookie header, as well as successfully modify it. However the modification anywhere. It does not appear in the...

Log4Shell Scanner & Log4Shell Everywhere

Hi, I configure Log4Shell Scanner & Log4Shell Everywhere addon in my burpsuite professional to detect the log4j vulnerability. Once after craw & audit completed for the log4j vulnerable application, I couldn't found the...

Match the string and grep entry line

Hello community, I need small help,if I give a string,then match the string in response and show the total affected line. For example:aws_key match I need to write my tool, I need help.

Example of replacing and or adding a cookie via Burp Extender in Python?

Hey all, relatively new to Burp extensions. I've been trying to find an example of Burp Extender Python snippet that adds a custom Cookie either to every request or to the cookie jar. Does anyone have any Python code...

how to load request[]

mycode: byte[] request = callbacks.getHelpers().stringToBytes(Config.CSRF_REQUEST); IRequestInfo requestInfo = callbacks.getHelpers().analyzeRequest(request); List<String> header_list =...

Chinese charset not display correctly in issue table.

Chinese charset not display correctly in issue table. I already set the correct charset in User Option-Character Sets. HTTP message and Extender output display Chinese charset with no problem. Only issue table not display...

Allow Extensions to Bypass Global Timeout

Hi, we're testing a system that does not send a response on successful exploitation. In ActiveScan the Status changes to "Errors: request timeout" and the vulnerability isn't reported. When using a modified...

Log4Shell and Burp "Enterprise edition"

Hi, does anyone managed to get the Log4Shell extension to work on Burp Enterprise Edition ? (not Burp Professional). I can upload the plugin to my BE server, upload the scanning profile...

Weird behavior while setting request

Hi, I made an extension to add a custom header to every request, but it seems that it is breaking a lot of pages. An example is those one click captchas, but i also break a lot os SPAs. I want to get some help on how i...

stringToBytes method outputting invalid/incorrect characters

First reported here https://github.com/synfron/ReshaperForBurp/issues/15#issuecomment-1002476347, a user reported that text they entered isn't being properly outputted in Burp Suite. It is outputting with invalid/incorrect...

Log4Shell and Burp "Enterprise edition"

Hi, does anyone managed to get the Log4Shell extension to work on Burp Enterprise Edition ? (not Burp Professional). I can upload the plugin to my BE server, upload the scanning profile...

How to view audit requests generated by Collaborator Everywhere?

I would like to inspect those requests sent by Collaborator Everywhere extension to see whether it works or not. I concern this issue since I cannot get any access log in my Apache2 server used to test (forensic_log mod is...

Log4Shell Scanner and Log4Shell Everywhere

Hello Team, I tried to install Log4Shell Scanner and Log4Shell Everywhere extensions using BApp Store in Burp Extender to test the log4j vulnerability. I have tried the below process: 1. New Scan -> Scan details ->...

Burp Fails to add Jython.jar

Mobile Assistant for Jailbroken Devices Not Working!

Burp embedded browser - Chromium

whether Apprentice level is enough to pass burp exam?

How can I move burp extension folder elswhere ?

Loading external jars from extensions

Unable to access labs, getting 404 Not Found

Python extension works with new header but unable to replace existing header?

Log4Shell Scanner & Log4Shell Everywhere

Match the string and grep entry line

Example of replacing and or adding a cookie via Burp Extender in Python?

how to load request[]

Chinese charset not display correctly in issue table.

Allow Extensions to Bypass Global Timeout

Log4Shell and Burp "Enterprise edition"

Weird behavior while setting request

stringToBytes method outputting invalid/incorrect characters

Log4Shell and Burp "Enterprise edition"

How to view audit requests generated by Collaborator Everywhere?

Log4Shell Scanner and Log4Shell Everywhere

Burp Suite Support Center