Burp Suite User Forum

Login to post

AWS Fargate support

I understand that there is support for AWS EKS to run BurpSuite. I was wondering if BurpSuite Enterprise could be run in an AWS Fargate (ECS) or OpenShift?

Last updated: Jan 17, 2022 11:30AM UTC | 1 Agent replies | 1 Community replies | Feature Requests

Export/import Resource Pool configuration in project options JSON

We want to set up a few default Resource Pools so we don't have to recreate them every time a new disk project gets set up. Our process when starting a new project is to import a standard default project options JSON so...

Last updated: Jan 17, 2022 11:10AM UTC | 3 Agent replies | 2 Community replies | Feature Requests

Burp Intruder

Burp intruder provides the option of extracting specific data in intruder results but it has a limit of 100 words only. I tried to grep around 500 words of a token that is being used for the login session but it fails to...

Last updated: Jan 15, 2022 10:50AM UTC | 0 Agent replies | 0 Community replies | Feature Requests

Need to generate auth token after 1 hour, How we can achieve it?

Need to generate auth token after 1 hour, How we can achieve it? Scenarios: We get token from google api and token is valid for 1 hour. Need to capture token and pass to other requests after 1 hour Please help

Last updated: Jan 12, 2022 02:13PM UTC | 6 Agent replies | 10 Community replies | Feature Requests

Reg Free trial

I have requested for Free trial license. But I did not get the free trial license

Last updated: Jan 11, 2022 09:11AM UTC | 1 Agent replies | 0 Community replies | Feature Requests

Free Trial

I have raised an request for free trial. I did not get the free trial license

Last updated: Jan 11, 2022 09:09AM UTC | 1 Agent replies | 0 Community replies | Feature Requests

Content Discovery Queued Tasks

Hi, Could the queued tasks in the Discovery Session have the same functionality as the Scanner Scan Queue? This would allow the user to cancel individual discovery tasks to lower bandwidth/time, or to prioritise...

Last updated: Jan 07, 2022 08:13AM UTC | 3 Agent replies | 3 Community replies | Feature Requests

Collaborator Token definition & "API" Access

Hi, we would like to add two feature requests for private collaborator servers. 1. Please, let us define the base collaborator server sub domain name (and length) 2. Provide an official "API" to access the...

Last updated: Jan 06, 2022 06:15PM UTC | 2 Agent replies | 1 Community replies | Feature Requests

Intruder pause and launch built-in broswer on redirect option

Hi, Is it possible to pause on redirect and have an option to open session built-in browser. Would be useful for MFA or credential attacks where you successfully logon and can continue attacks

Last updated: Jan 06, 2022 02:05PM UTC | 1 Agent replies | 0 Community replies | Feature Requests

Credential Stuffing Intruder Payload

Is there an easy way to go from a list with username:password combinations with a specific separator (i.e. colon) to do credential stuffing. I found in order to do this I could make two individual files (one with usernames...

Last updated: Jan 05, 2022 12:15PM UTC | 1 Agent replies | 0 Community replies | Feature Requests

Add LDAP support to Collaborator

Any thoughts on adding LDAP support to Collaborator? Might come in useful for Log4Shell testing.

Last updated: Jan 04, 2022 03:12PM UTC | 1 Agent replies | 0 Community replies | Feature Requests

API to get repeater history

Hi, we want API to get repeater history. Though burp API provides proxy history API (getProxyHistory), there is no repeater history API. If there is an API to get repeater history, it is really helpful for us to get the...

Last updated: Dec 24, 2021 04:00PM UTC | 1 Agent replies | 0 Community replies | Feature Requests

API to get repeater history

Hi, we want API to get repeater history. Though burp API provides proxy history API (getProxyHistory), there is no repeater history API. If there is an API to get repeater history, it is really helpful for us to get the...

Last updated: Dec 24, 2021 03:15AM UTC | 0 Agent replies | 0 Community replies | Feature Requests

When deploying private burp collaborator, allow ability to add custom DNS records of A type.

Currently as mentioned in the docs: https://portswigger.net/burp/documentation/collaborator/deploying field "customDnsRecords" only allows us to specify optional DNS records of type TXT and CNAME, it makes sense for the...

Last updated: Dec 21, 2021 03:14PM UTC | 2 Agent replies | 1 Community replies | Feature Requests

Suggestions for Burp Collaborator Server config options

Hey support/albinowax, Some suggestions for Burp Collaborator Server config options: - "customHttpContent" for unknown paths to replace that "Burp Collaborator is a service.." default response; - "customHttpContent"...

Last updated: Dec 20, 2021 11:20AM UTC | 1 Agent replies | 0 Community replies | Feature Requests

Burp Pro v2021.8.3 Intruder results not saved into Project dashboard

I encountered a bug where my I paused intruder result to reduce sending all payloads to server as I was lucky to hit the correct response within the first few payloads. After I paused the attack, I went to click Save >...

Last updated: Dec 17, 2021 05:28AM UTC | 0 Agent replies | 1 Community replies | Feature Requests

Selection on Inspector

When selecting text on repeater, on inspector it shows the number of bytes. It would be helpfull to see the number of bytes also in Dec but also in Hex. In particular when performing http smuggling attacks (transfer...

Last updated: Dec 15, 2021 08:56PM UTC | 1 Agent replies | 1 Community replies | Feature Requests

What are some of the features that I wished can be improved on?

HI Portswigger, I was hoping some of these features are already in place: Do correct me if I am wrong 1) Do not intercept - is there a way to blacklist everything else and intercept only the domain that we have...

Last updated: Dec 15, 2021 01:41PM UTC | 1 Agent replies | 0 Community replies | Feature Requests

Burp Enterprise, disable Http/2 requests configuration option

Hello, I've been in discussion with support via email already but wanted to post this here. We have a situation where burp is identifying the application we are scanning uses Http/2 when in actuality, it doesn't and it...

Last updated: Dec 13, 2021 05:03PM UTC | 2 Agent replies | 3 Community replies | Feature Requests

Load saved project from within Burp

Hello, It would be nice to have the ability to load a saved project without having to exit Burp and restart it. Are there any plans for implementing such functionality? Thanks, Anthony

Last updated: Dec 13, 2021 09:31AM UTC | 5 Agent replies | 4 Community replies | Feature Requests

Page 1 of 47

Burp Suite Support Center

Your source for help and advice on all things Burp-related.

Burp Suite Support Center image