Burp Extensions - Page 5 - Burp Suite User Forum

Conditionally/unconditionally add response headers

I want to conditionally add response headers, but having a hard time knowing if there are any apis to do this easily. I basically want to UNconditionally add some response headers and conditionally add a response header...

Cant Load python extensions

i get errors when i try to load python based extensions (i downloaded jython standalone and adressed in extension options) error is like this: java.lang.ExceptionInInitializerError at...

Error when try to install Autowasp extension

Hello, I faced with issue when installing Autowasp in Burp CE. The error is: java.lang.NullPointerException at autowasp.logger.TrafficLogic.<init>(TrafficLogic.java:69) at...

BurpBounty

Can you tell me the steps how to test "Missing / insecure Content Security Policy" header via burpbounty? I have installed the free version of Burpbounty in my Burp professional. but I did not get any clue how to add the...

Burp Suite license key

I was uploading downloaded Burp Suite license key but showing an error popup. Please help me how to upload Burp Suite license key.

WCF Deserializer

I have installed this with a manual BApp install - the extension is showing as installed and active with no errors in the Error tab. I have also put the NBFS.exe in my Burp run folder as described here:...

Deobfuscate Request/Response in logs

I recently came across an application that obfuscates its request/response field names, I ended up finding the de-obfuscated names in the source and wanted to translate these names automatically to make testing easier. I...

Crawler internal state tree accessibility (and other things)

Dear PortSwigger support, I was wondering whether it is possible to access the internal tree that the crawler maintains during a crawl. I'm referring to the state trees described in this blog post:...

IMessageEditorTab getMessage() not changing raw tab in Repeater

Hello, I am building an extension that implements IMessageEditorTab and provides a component with multiple ITextEditors where users can save snapshots of the request. Within each snapshot they can click a button to...

Getting the warning as below details on executing the jarfile and the process is stuck and nothing happens further. I have a mac on which Burp Suite Professional and jdk 13 are installed. Please help out on the isse

/Library/Java/JavaVirtualMachines/jdk-13.0.2.jdk/Contents/Home/bin/java -Xmx4G -Djava.awt.headless=true -classpath burpsuite_pro_v2021.2.1.jar burp.StartBurp --unpause-spider-and-scanner -c config.xml WARNING: An...

Reset Activation Limit

Hi Support It seems I have reached the activation limit for my Burp Suite Pro Licence therefore Please reset the limit so that I can continue using the Burp Suite. Also, I would like to the activation limit that we...

Disable pretty print through Burp Api?

Hello, is there any way to disable pretty print on IMessageEditorTab through Burp Api?

Burp Extension issue

I am using burpsuite pro v2020.6 i have installed "JSON Web Tokens" extension from bAppStore and it's installed successfully , but its not displaying in proxy and repeater tabs. but its displaying in tabs . what is...

Drag'n'drop repeater tab events

Hi. I have an extension which allows you to change the colour and font of Repeater tabs, which I'm trying to refine at the moment. Changing the colours is fine, but when a tab is dragged to rearrange the order, or the title...

IMessageEditorController including applyMarkers?

I am using Sample Burp Suite extension: custom logger as a base to create a plugin, but I noticed that I cannot add the marker functionality (which is used by scanner issues). IHttpRequestResponseWithMarkers...

Difference in response when active scan initiated via "BURP REST API Extension" and "BURP UI"

Observed that when "Active scan" is initiated via 'Burp REST API Extension', there is no response obtained for a request. However, if "Active Scan" is performed via the 'Burp UI-> Right Click option ("Do Active Scan")' then...

Extension to get the position of markers

Hi, I'm trying to create a python extension that retrieves the list of markers from the request that is currently on the Positions tab in Intruder. I know I need to use the getRequestMarkers() method at some point, but I...

ActiveEvent

Hi, HAs anyone figured out how to use the ActiveEvent extension for Burp, to send vulnerability data to splunk? Any advice would be highly helpful. I have followed the instructions on...

highlight many keyword in the response

I used this code: if (resKeywords.size() > 0) { List<int[]> resp = new ArrayList<>(); for (byte[] msg : resKeywords) { List<int[]> matches = getMatches(response, msg); ...

Save custom extension settings on project level

I would like to save some Extension specific settings on Project Level. The only options I have seen are: saveConfigAsJson --> Not considered to save custom extension specific settings. saveExtensionSetting --> The...