Burp Suite User Forum

Login to post

Burp Fails to add Jython.jar

I downloaded and installed Jython-2.7.0 following the link provided by Burp. I try to add this one to Burp and facing the error message: java.lang.ClassNotFoundException: burp.BurpExtender at...

Last updated: Feb 14, 2022 02:06PM UTC | 4 Agent replies | 6 Community replies | Burp Extensions

Mobile Assistant for Jailbroken Devices Not Working!

Hello, I installed the mobile assistant on my iPhone XS Max, iOS 14.8, unc0ver jailbreak and need to test some apps the tweak installed but i have 2 problems which is: 1- the CA Certificate showing "Not installed" and...

Last updated: Feb 07, 2022 06:07PM UTC | 1 Agent replies | 0 Community replies | Burp Extensions

Burp embedded browser - Chromium

Hello all, I am using Burp pro version: V2021.12.1 on Windows 11 Pro version: 10.0.22000 Build 22000 On every website I am trying to log in with the embedded browser I am getting errors, for example: On Gmail: "Your...

Last updated: Feb 07, 2022 12:24PM UTC | 1 Agent replies | 1 Community replies | Burp Extensions

whether Apprentice level is enough to pass burp exam?

whether Apprentice level is enough to pass burp exam?

Last updated: Feb 07, 2022 09:01AM UTC | 1 Agent replies | 0 Community replies | Burp Extensions

How can I move burp extension folder elswhere ?

My username on this computer has a non ascii character in it, this causes problems to load any python extensions. I can't change my username on the computer (company policy T^T) so the only for me to load any python...

Last updated: Feb 07, 2022 08:30AM UTC | 1 Agent replies | 0 Community replies | Burp Extensions

Loading external jars from extensions

Hello, I am building a Burp extension and I would like to incorporate external JARs, for example the gson library to store some settings in a file. For the life of me I can't figure out how to get this configured...

Last updated: Feb 03, 2022 07:57PM UTC | 3 Agent replies | 4 Community replies | Burp Extensions

Unable to access labs, getting 404 Not Found

Today, I am unable to access labs through burpsuit proxy. Yesterday, I was able to access it without any issues. I tried with chrome and mozilla firefox, Both showing 404-Not Found responses for all labs. My Mozilla Firefox...

Last updated: Jan 26, 2022 04:37PM UTC | 2 Agent replies | 1 Community replies | Burp Extensions

Python extension works with new header but unable to replace existing header?

Hey all, I was wondering if I could have some help with this extension. I have been able to pull my existing Cookie header, as well as successfully modify it. However the modification anywhere. It does not appear in the...

Last updated: Jan 25, 2022 08:37AM UTC | 1 Agent replies | 1 Community replies | Burp Extensions

Log4Shell Scanner & Log4Shell Everywhere

Hi, I configure Log4Shell Scanner & Log4Shell Everywhere addon in my burpsuite professional to detect the log4j vulnerability. Once after craw & audit completed for the log4j vulnerable application, I couldn't found the...

Last updated: Jan 18, 2022 08:52AM UTC | 3 Agent replies | 3 Community replies | Burp Extensions

Match the string and grep entry line

Hello community, I need small help,if I give a string,then match the string in response and show the total affected line. For example:aws_key match I need to write my tool, I need help.

Last updated: Jan 14, 2022 10:51AM UTC | 1 Agent replies | 0 Community replies | Burp Extensions

Example of replacing and or adding a cookie via Burp Extender in Python?

Hey all, relatively new to Burp extensions. I've been trying to find an example of Burp Extender Python snippet that adds a custom Cookie either to every request or to the cookie jar. Does anyone have any Python code...

Last updated: Jan 13, 2022 12:14PM UTC | 3 Agent replies | 3 Community replies | Burp Extensions

how to load request[]

mycode: byte[] request = callbacks.getHelpers().stringToBytes(Config.CSRF_REQUEST); IRequestInfo requestInfo = callbacks.getHelpers().analyzeRequest(request); List<String> header_list =...

Last updated: Jan 12, 2022 01:47AM UTC | 1 Agent replies | 1 Community replies | Burp Extensions

Chinese charset not display correctly in issue table.

Chinese charset not display correctly in issue table. I already set the correct charset in User Option-Character Sets. HTTP message and Extender output display Chinese charset with no problem. Only issue table not display...

Last updated: Jan 10, 2022 10:52AM UTC | 1 Agent replies | 0 Community replies | Burp Extensions

Allow Extensions to Bypass Global Timeout

Hi, we're testing a system that does not send a response on successful exploitation. In ActiveScan the Status changes to "Errors: request timeout" and the vulnerability isn't reported. When using a modified...

Last updated: Jan 07, 2022 11:40AM UTC | 2 Agent replies | 0 Community replies | Burp Extensions

Log4Shell and Burp "Enterprise edition"

Hi, does anyone managed to get the Log4Shell extension to work on Burp Enterprise Edition ? (not Burp Professional). I can upload the plugin to my BE server, upload the scanning profile...

Last updated: Jan 06, 2022 12:36PM UTC | 1 Agent replies | 0 Community replies | Burp Extensions

Weird behavior while setting request

Hi, I made an extension to add a custom header to every request, but it seems that it is breaking a lot of pages. An example is those one click captchas, but i also break a lot os SPAs. I want to get some help on how i...

Last updated: Jan 05, 2022 06:00PM UTC | 1 Agent replies | 1 Community replies | Burp Extensions

stringToBytes method outputting invalid/incorrect characters

First reported here https://github.com/synfron/ReshaperForBurp/issues/15#issuecomment-1002476347, a user reported that text they entered isn't being properly outputted in Burp Suite. It is outputting with invalid/incorrect...

Last updated: Jan 05, 2022 05:31PM UTC | 2 Agent replies | 1 Community replies | Burp Extensions

Log4Shell and Burp "Enterprise edition"

Hi, does anyone managed to get the Log4Shell extension to work on Burp Enterprise Edition ? (not Burp Professional). I can upload the plugin to my BE server, upload the scanning profile...

Last updated: Jan 05, 2022 03:03PM UTC | 0 Agent replies | 0 Community replies | Burp Extensions

How to view audit requests generated by Collaborator Everywhere?

I would like to inspect those requests sent by Collaborator Everywhere extension to see whether it works or not. I concern this issue since I cannot get any access log in my Apache2 server used to test (forensic_log mod is...

Last updated: Dec 23, 2021 11:34AM UTC | 1 Agent replies | 0 Community replies | Burp Extensions

Log4Shell Scanner and Log4Shell Everywhere

Hello Team, I tried to install Log4Shell Scanner and Log4Shell Everywhere extensions using BApp Store in Burp Extender to test the log4j vulnerability. I have tried the below process: 1. New Scan -> Scan details ->...

Last updated: Dec 22, 2021 10:07AM UTC | 1 Agent replies | 0 Community replies | Burp Extensions

Page 4 of 33

Burp Suite Support Center

Your source for help and advice on all things Burp-related.

Burp Suite Support Center image