Feature Requests - Burp Suite User Forum

Preview SVG Responses

The subject says it all. When there's a response with the following content type, it would be great to be able to see a preview with the embedded Chromium browser. Content-Type: image/svg+xml Thanks!

Proxy - > HTTP History: Remember the columns custom order

Hi, Please consider retaining/remember across project saved options the columns custom order. Personally, I do find very less appealing the effort I have to invest to manually order the current columns as I want to see...

Is it possible to make intruder payload based on the previous response?

Hello, I have 7 different payloads for 1 position The intruder needs to define conditional previous response, after that the payload will choose 1 from the 7 different payloads to the current post request. Is it...

Searching Web-socket History

Hi team, I was testing a Javascript application that made Websocket requests. I was trying to search sensitive parameters/calls in WebSocket history. They were making calls to update using values to the server using...

Option to ask to keep previous settings during upgrade

I'm using latest version of BurpSuitePro executable on windows 10 system on an external monitor with 125% scaling. In order for BurpSutePro to scale properly on my computer I have to modify the C:\Program...

match and replace for the websocket

Possible to add a match and replace for the websockets? Someone made a plugin for it in the past, but isnt working anymore.

Slow Loris Test in BURP?

Hello, Do you think you will add a Slow Loris Test feature ? Regards

OAuth authentication

At the moment, burp enterprise does not support Authenticated scanning with OAUTH and SSO. Going forward it is good to have a login sequence recorder to overcome such issues

Split pane view in "HTTP History" tab

The HTTP History tab would be improved by providing the option to have split panes for request and responses (i.e. like the Repeater tab). Doing so would make it cleaner and easier to scroll through request and response...

In Search of a request or response, show which result you're on out of the total number of matches

As an example, in Proxy -> HTTP history, looking at a Response, entering a search term in the "search" box in the bottom of the window will show how many matches there are and you can use the arrows to the left to move...

Pre-defined extension list

Hi, I don't know if it has been suggested before, but a nice feature would be some way to load some extensions by default (like a whitelist/allowlist). Like I would to load by default "content type converter", "logger++"...

Add explicit word-wrap option

The 'Pretty' option within the view panes for requests/responses is amazing; BUT once selected it removes soft wrapping. This makes it a huge pain to review large / long line requests and responses. Soft-wrapping should...

Do intercept is missing

The option called do intercept is missing from my burp suit and in repeater after i press go in the result page i can not able to make any changes

License transfer

We bought Enterprise edition by PO Receipt date: 05 June 2020 Receipt number: 426891 Order number: B49E5E7B58 - unfortunately is only tied to my colleague's email account : POliphant@cftc.gov and this support is to...

BurpSuite Enterprise - Real time retrieval of credentials from external source (Enterprise Credential Vault)

We would like to see a feature added to the Enterprise product that would allow for the real-time retrieval of credentials (associated with a scan configuration) from an external source. Enterprise security policies often...

Side-by-side View

Hi! Currently, displaying a request+response pair side-by-side is only possible in Repeater ("Repeater -> View -> Left/right split" from the menu bar) or via extensions like Flow or Logger++. I use this layout a lot and...

Save Embedded Browser Settings

Any changes made to the settings of the embedded Chromium browser are reverted when the application is closed. This includes the removal of installed extensions. It would be helpful if the browser settings could be saved...

In proxy history, view both request and response in the same tab

I would be nice to have the possibility in the proxy history to view both request and response. This would be very helpful to view the flow of the application, having the possibility to view the history lower tab perhaps...

File Select option in Repeater

Hi, It would be great if we had opportunity to play file upload requests in repeater tab by selecting files. Additionally, that would be additional plus if intruder also supported file related payload list *natively*

Burp Suite Enterprise - Option to collapse all site folders by default

I've been using Burp Suite Enterprise for awhile and have accumulated a lot of sites which are all separated by departments. Currently these site folders are open by default I'd love the ability to collapse all of...