Feature Requests - Page 3 - Burp Suite User Forum

Cannot adjust severity ratings for Burp Enterprise

I am unable to find a way in the UI to change the severity ratings. It would be beneficial to have a way to adjust a rating depending on the validation of a finding manually.

Preview SVG Responses

The subject says it all. When there's a response with the following content type, it would be great to be able to see a preview with the embedded Chromium browser. Content-Type: image/svg+xml Thanks!

Proxy - > HTTP History: Remember the columns custom order

Hi, Please consider retaining/remember across project saved options the columns custom order. Personally, I do find very less appealing the effort I have to invest to manually order the current columns as I want to see...

Is it possible to make intruder payload based on the previous response?

Hello, I have 7 different payloads for 1 position The intruder needs to define conditional previous response, after that the payload will choose 1 from the 7 different payloads to the current post request. Is it...

Searching Web-socket History

Hi team, I was testing a Javascript application that made Websocket requests. I was trying to search sensitive parameters/calls in WebSocket history. They were making calls to update using values to the server using...

match and replace for the websocket

Possible to add a match and replace for the websockets? Someone made a plugin for it in the past, but isnt working anymore.

Split pane view in "HTTP History" tab

The HTTP History tab would be improved by providing the option to have split panes for request and responses (i.e. like the Repeater tab). Doing so would make it cleaner and easier to scroll through request and response...

In Search of a request or response, show which result you're on out of the total number of matches

As an example, in Proxy -> HTTP history, looking at a Response, entering a search term in the "search" box in the bottom of the window will show how many matches there are and you can use the arrows to the left to move...

Add explicit word-wrap option

The 'Pretty' option within the view panes for requests/responses is amazing; BUT once selected it removes soft wrapping. This makes it a huge pain to review large / long line requests and responses. Soft-wrapping should...

Do intercept is missing

The option called do intercept is missing from my burp suit and in repeater after i press go in the result page i can not able to make any changes

License transfer

We bought Enterprise edition by PO Receipt date: 05 June 2020 Receipt number: 426891 Order number: B49E5E7B58 - unfortunately is only tied to my colleague's email account : POliphant@cftc.gov and this support is to...

BurpSuite Enterprise - Real time retrieval of credentials from external source (Enterprise Credential Vault)

We would like to see a feature added to the Enterprise product that would allow for the real-time retrieval of credentials (associated with a scan configuration) from an external source. Enterprise security policies often...

Side-by-side View

Hi! Currently, displaying a request+response pair side-by-side is only possible in Repeater ("Repeater -> View -> Left/right split" from the menu bar) or via extensions like Flow or Logger++. I use this layout a lot and...

In proxy history, view both request and response in the same tab

I would be nice to have the possibility in the proxy history to view both request and response. This would be very helpful to view the flow of the application, having the possibility to view the history lower tab perhaps...

File Select option in Repeater

Hi, It would be great if we had opportunity to play file upload requests in repeater tab by selecting files. Additionally, that would be additional plus if intruder also supported file related payload list *natively*

Burp Suite Enterprise - Option to collapse all site folders by default

I've been using Burp Suite Enterprise for awhile and have accumulated a lot of sites which are all separated by departments. Currently these site folders are open by default I'd love the ability to collapse all of...

View users in Active Directory Security Group

I greatly appreciate the development that has been going into Burp Suite, especially the latest update that brought LDAP authentication. With that said, myself and my team members that use the application would love to...

Embedded browser: Disable external web service calls

The embedded browser is a nice step, but it sends many requests out to external Google services, including automatic search queries when typing in the address bar. Please modify the default chromium configuration to disable...

Filter by host/scope in Dashboard Issue Activity

Issue activity currently offers ability to filter by issue severity only. Would like to have the ability to filter displayed issues by host and scope at a minimum. The filter behavior elsewhere in burp can be referenced as...

Embedded Browser proxy bypass List

Hi, It would be great if you can make this configurable from Burp project or user options and loaded json options file then it gets added to chromium command flags...