Burp Suite User Forum

Login to post

need scroll feature in "Action"

when we use multiple extensions then in Proxy tab, whenever we click on Action button then scroll feature is not there so that we can not able to use all features provided by Action button.

Last updated: Nov 27, 2020 05:09AM UTC | 0 Agent replies | 0 Community replies | Feature Requests

Local File Inclusion and Remote code execution request

Good evening portswigger. I recently started learning ethical hacking and bug bounty not too long ago. I have finished the The web application hackers handbook and I'm about half way through your web security academy and I'm...

Last updated: Nov 26, 2020 11:11PM UTC | 2 Agent replies | 2 Community replies | Feature Requests

Add option to highlight to Target tab

Being able to highlight items with different colors in the Target Tab could take the place of a plugin like this https://github.com/Regala/burp-scope-monitor. I could use it to mark areas that still need coverage. PS you...

Last updated: Nov 26, 2020 11:32AM UTC | 2 Agent replies | 1 Community replies | Feature Requests

Search regex extract

I'd like to have a way to have Burp Search extract all the values that match a certain regex or results between a start and end regex. This would be similar to the feature in Intruder that can extract values based on two...

Last updated: Nov 25, 2020 05:50PM UTC | 2 Agent replies | 0 Community replies | Feature Requests

Checkbox for unauthenticated/authenticated crawl/audit

Hi, could you please introduce some checkbox, whether the Crawl+Audit should be authenticated, unauthenticated, or both? I have a huge scope (thousands of JSP files), I set login, and after 24h it's still only making...

Last updated: Nov 25, 2020 04:37PM UTC | 2 Agent replies | 1 Community replies | Feature Requests

Make Burp a distributed system

Hello, Last week I was testing a huge application with tens of thousands pages and my work was time throttled by my testing workstation. I guess it would be a huge amount of work but it could be very useful to be able to...

Last updated: Nov 25, 2020 02:12PM UTC | 3 Agent replies | 3 Community replies | Feature Requests

Please bring back the "Headers" view

Before the introduction of the "Inspector" sidebar, there was an option to set different views for requests and responses (Headers, Raw, Hex ...). These were very useful for reporting as we could do screenshots and show...

Last updated: Nov 25, 2020 12:34PM UTC | 2 Agent replies | 0 Community replies | Feature Requests

Add HTTP Method as a value to the filter scope

The current scope dialog uses protocol, host/ip, port and file as a filter, however, there are times when it would be useful to filter on HTTP method too. For example when working with a RESTful interface that uses the...

Last updated: Nov 24, 2020 03:35PM UTC | 4 Agent replies | 4 Community replies | Feature Requests

Proxy JS File Support

Working on-site sometimes we require to set upstream proxy servers to a JS file which switches the specific proxy/server to connect to based on the destination IP address. Support for this file format would be useful in...

Last updated: Nov 24, 2020 03:35PM UTC | 4 Agent replies | 1 Community replies | Feature Requests

Timing requests

Add a feature in intruder/repeater to start requests at a specific time and not in a specific time

Last updated: Nov 23, 2020 04:17PM UTC | 4 Agent replies | 2 Community replies | Feature Requests

Multiselect for Inspector

Before the Inspector was introduced to Repeater, I could select many different parameters (which didn't have any value for example) and simply remove them and try the attack payload again. This is currently not possible, and...

Last updated: Nov 20, 2020 03:47PM UTC | 1 Agent replies | 0 Community replies | Feature Requests

Playback on recorded login

Hi In order to debug problems with "recorded login" fucntionality like : "Failed to replay sequence Login : expected navigation after clicking on ... but none occurred" Competing offer playback feature, can you do the...

Last updated: Nov 20, 2020 09:30AM UTC | 2 Agent replies | 0 Community replies | Feature Requests

sitemap feature in buro enterprise edition

are there any site maps in Burp suite Enterprise edition!

Last updated: Nov 20, 2020 09:19AM UTC | 1 Agent replies | 0 Community replies | Feature Requests

Javascript dependent Login Page unable to use Automated Scan Feature

Hey! If the login page only works with JavaScript enabled. Then the automated scan feature is not working. It says login page not found. As discussed in this post...

Last updated: Nov 20, 2020 08:47AM UTC | 2 Agent replies | 0 Community replies | Feature Requests

Rest API Scanning

Is there an anticipated timeline available for api scanning feature to be available in BurpSuite Enterprise?

Last updated: Nov 20, 2020 08:37AM UTC | 4 Agent replies | 2 Community replies | Feature Requests

CSV Export of vulnerabilities

Hello, Is there a way to export vulns via a CSV file instead of the normal HTML report?

Last updated: Nov 19, 2020 08:24AM UTC | 1 Agent replies | 0 Community replies | Feature Requests

Follow XDG directory specification

Hello, I would like the developers of the Burp Suite to consider implementing XDG directory specification in order to remove unnecessary $HOME clutter. By storing config, cache and user data under $XDG_CONFIG_HOME...

Last updated: Nov 18, 2020 04:18PM UTC | 1 Agent replies | 0 Community replies | Feature Requests

A button to pause all the traffic generated by Extenders

Hi, Would it be possible to implement "Pause all Extender traffic" button, which would also be applied to Extenders? For example, if I try to guess parameters using Param Miner, but I would like to pause all the traffic...

Last updated: Nov 18, 2020 03:59PM UTC | 2 Agent replies | 0 Community replies | Feature Requests

Burp 2: Application Login - 2nd authentication step

The New Login Credentials accept username and password. Would it be possible to introduce an optional 2nd authentication step, like PIN (with static value)? For example, user needs to fill in username+password, followed by...

Last updated: Nov 18, 2020 11:22AM UTC | 10 Agent replies | 10 Community replies | Feature Requests

additional decoder compression options

It would be really useful if decoder had options to deal with deflate and brotli as well as gzip ...

Last updated: Nov 17, 2020 03:34PM UTC | 2 Agent replies | 2 Community replies | Feature Requests

Page 1 of 35

Burp Suite Support Center

Your source for help and advice on all things Burp-related.

Burp Suite Support Center image