Feature Requests - Page 30 - Burp Suite User Forum

Use Burp Suite with redsocks

Firstly, I'm new to Burp, therefore I may have many misunderstandings about it. I'm using redsocks (patched version actually) to redirect all TCP traffic through Burp Suite. Then I found that non HTTP(S) traffic (like...

Burp suite scan option not available.

Hello! I'm facing two issues with my Kali linux burp suite. 1. My burp suite Free edition don't have the ne

Client TLS Certificate Comment/Name

When working with client TLS certificate authentication, it's very tedious to differentiate between users for the same application. I've had a number of pentests, with client certificates, that show no difference in the...

REST API

Hey Burp Team, having some issues with how the Burp Suite Enterprise Edition REST API functions. Right now, starting a scan only requires a list of URLs to be scanned. However, my team sets up the site in BSEE either through...

Iterate get or post value in each subsequent request sent by the scanner

It would be handy if I could specify a value that must be iterated with each subsequent request by the scanner (scanning without doing so results in server errors).

Kerberos integration strikes back

The large majority of our applications are fully integrated with AD Kerberos, this means that currently no workable method exists to allow us to use Burp for any tests of our internal applications which is proving to be an...

Automatic Move to the next match + quicker use of Extenders

Hi, I’d like to share some feature requests, which I think would improve Burp Suite even more?? 1. Add into settings “Automatic move to the next match”. The desired outcome would be, every time I click on some issue,...

Please allow embedded browser settings to be saved.

This has been brought up by others but I feel the need to amplify the message. Having to manually change settings and reinstall uBlock origin (at the very least) is unacceptably prohibitive. It's certainly less of a pain to...

Save Embedded Browser Settings

Any changes made to the settings of the embedded Chromium browser are reverted when the application is closed. This includes the removal of installed extensions. It would be helpful if the browser settings could be saved...

Selection option for different types of vulnerabilities

In the configuration, it is very hard to select single vulnerabilities, do we have any alternation to select only single issue type to scan

ONE OF THE SSRF LAB NOT WORKING

hi the SSRF with filter bypass via open redirection vulnerability lab is not working ,was trying to solve the lab the redirect is not going through ,not showing any any response even after deleting carlos ,that how it has...

requesting to change my name

2 Factor Authentication - BurpSuite Enterprise Edition

We tried to perform DAST for application which support 2 factor authentication. There should be option where Analyst should able to enter value where ever manual intervention is required like Captcha or OTP which will help...

Filter Settings

It is just from the usability point of view. In the earlier versions of Burp Suite Professional, the filter settings use to come as a drop down, so if we look for something, we can simply click outside of that filter...

Support for External DB MySql 8.x and MSSQL 2019

We were investigating a potential purchase of Burp enterprise and noticed that only some of the older DBs are supported. Is there any plans to add support for Mysql 8 or MSSQL 2019?

Select Specific Extensions For Active Scan

Hello, A very useful feature would be to save Scanner profiles that only include specific extensions. This would prevent having to manually disable irrelevant extensions every-time a new application with a specific set of...

Automatic upstream proxy retrieval

I think it would be quite useful to have an option when setting up upstream proxy servers where you tell burp to use the system proxy configuration. Burp would then : * Find in the system configuration the path to the pac...

Source IP addresses in Proxy/HTTP History

It would be great if an additional column for the source IP address would exist, so we could see which client makes the selected request.

Fix Burp Icon

BurpSuite icons (both for community and pro versions) don't match macOS design language. First they are way huge when comparing them to macOS pre installed apps like app store and so on, plus they have squared edges which...

Burp License

Dears, I need to extend trial license for further assessment to burp.