Feature Requests - Page 27 - Burp Suite User Forum

En-/disable interception from browser

Hi guys! Would it be possible to develop a browser extension, which allows controlling the interception? Thanks!

[Burp Enterprise] Add issues as subtask for a site

It would be great to have the option of grouping issues of a site under the same "main task" and add the issues as Subtasks to that main task instead of getting new tasks for every new finding.

Collaborator server catching specific ports

Hi, I'm not sure if it would be technically feasible, but would it be possible for the Collaborator server capture which port (UDP/TCP) was tried to be used? I mean if I simply do ssh XXX.burpcollaborator.net I receive only...

Ability to view the delay of a response in a column (Intruder)

May be very useful while testing for time based injection (sql, command, aso) to see the delay of a response returned by the remote webserver.

parameter enumeration in DOM Invader

Hello Can you add support for client-side parameter enumeration? An example extension takes a list of parameters from the user Then you modify it to be added in the url After that, an iframe is created inside the page,...

Hotkeys - pause/resume all tasks

Hi, would it be possible to add a Hotkey "Toggle task execution" or something like that? We have Toggle Intercept on/off; but for "Resume task processing"/"Pause all tasks" I'm unable to find hotkey in User options -> Misc...

Gaming accessories

Gaming accessories - USA retailer of Cases, Screen protectors and other accessories for your Microsoft Xbox One S Controller & XBox 360. https://fommy.com/collections/gaming-accessories

Possibility to add comment for false positives

Hi, In Burp-Suite Enterprise, I think it would be interesting to have the possibility to enter a comment when we mark as false-positive an issue so that we can justify why we mark as false-positive this issue. Kind...

lab can't shows solved

When I solve labs they are not showing as solved when I redirect to the learning page.

Follow HTTP stream in proxy history and better relationship visualisation

Hi, Ok, let me start by saying I don't even know how to describe what I am requesting but in a nutshell It would be something similar to the "follow TCP stream" in Wireshark or the Maltego relationship...

Documentation of the BURP rest API

Hi, We would like to obtain the documentation of the rest API for burp suite pro. At the moment we use third party website to figure out the possible calls. For example, using the /v0.1/scan endpoint with a URL...

Burp Suite Enterprise vs Pro scanner feature differences

Good morning, While testing both Burp Suite Enterprise and Pro versions, a question arose. If you look at the Scanner function of the Enterprise or Pro version, I know that both perform vulnerability checks based on...

Custom Macro Parameter in URL Definition

Hi Portswigger Team, I've noticed that more and more websites use a one-time login page. The landing page defines a one-time valid login request. Since the one-time value is in the URL itself and is no GET parameter (I...

exploit server limitations

During doing one of the labs, I encountered a limitation: it is impossible to create two endpoints with different exploits because after saving the last exploit, the previous gets erased. It forces one to try to put...

Ability to mark multiple issues as FP

Hi, We've been auditing issues on Burp Enterprise and found it very frustrating to have to individually mark every issue as FP. It would be great to have an option to select various issues and then apply the FP flag to...

View Issue details from Audit Items

In previous versions of Burp, when issues were detected while scanning a URL, it would show up in varying colors of severity. When you double-clicked that URL item in the scan queue - it actually showed you specific details...

Rendering JSON in pretty form in response body

Hi, Please consider rendering application/json content in response.body in a pretty form. Today, I am forced to copy+paste the content into another tool to view it in pretty form. Thx Chaks

SSO and LDAP integration for Burp Enterprise

After setting up the initial infrastructure and promoting the solution among projects, the team size quickly started to grow and it already became painful to manually manage the user accounts. It would be very beneficial...

Intercepting a Reqest in brup suite of any website that was running through vpn.

I can able to intercept a request in Brup suite of any website that was running through WI-FI but I was unable to intercept a request of website that was running through vpn. Can anyone help me

open burpsuite i get following error

Here I provide full output after I launching Burp Suite : C:\Users\MR-ROBOT\Desktop\Burp_Suite_Professional_2021.2.1_Build_5962>java -noverify -javaagent:burploader.jar -jar burpsuite_pro_v2021.2.1.jar Error: A JNI error...