Burp Suite User Forum

Login to post

Tool to assist in Building Burp Extension UI or Extending Burp UI to APIs

To further the development of Burp Extensions, I think helping users design UI layouts from Burp and creating template code would be amazing. The biggest barrier to creating extensions in my opinion is the difficulty in...

Last updated: Feb 28, 2022 04:09PM UTC | 1 Agent replies | 0 Community replies | Feature Requests

Enable CORS in private burp collaborator

n/a

Last updated: Feb 28, 2022 12:16PM UTC | 2 Agent replies | 1 Community replies | Feature Requests

Highlights that apply to all instances of a unique API Call

Hello, It would be great to have the ability to persistently and recursively highlight Proxy History requests that correlate to a unique API call. The "key" could be based off of HTTP Verb / Endpoint or HTTP Verb /...

Last updated: Feb 28, 2022 10:23AM UTC | 1 Agent replies | 0 Community replies | Feature Requests

Cannot adjust severity ratings for Burp Enterprise

I am unable to find a way in the UI to change the severity ratings. It would be beneficial to have a way to adjust a rating depending on the validation of a finding manually.

Last updated: Feb 24, 2022 08:59AM UTC | 6 Agent replies | 5 Community replies | Feature Requests

Providing UDP source ports in Burp Collaborator

Is it possible to provide UDP source ports of DNS queries via the IBurpCollaboratorInteraction interface? This would allow to easily analyze the randomness of used source ports, which makes it possible to find...

Last updated: Feb 19, 2022 08:59AM UTC | 2 Agent replies | 2 Community replies | Feature Requests

Compare site maps: multiple suggestions

The compare site maps has a useful "sync selection" at the top right. While it does sync highlights, in does not scroll both Map1 and Map2 views together. Meaning, if one the user has an element selected in Map 1 (top) and...

Last updated: Feb 18, 2022 03:58PM UTC | 1 Agent replies | 1 Community replies | Feature Requests

View origional / origin cert when proxying SSL traffic

It would be nice if we could view the origin cert behind burp when proxying SSL traffic. Sometimes when proxying SSL traffic through burp, we need to view the properties of the SSL cert on the remote server. Sometimes that...

Last updated: Feb 18, 2022 02:46PM UTC | 1 Agent replies | 0 Community replies | Feature Requests

Proxy Original Request Vs Edited Request

Love the new split view on the proxy history with the request/response! The drop down to flip between the original and edited though is a pain. Going back through the proxy history for reporting and flipping between these...

Last updated: Feb 17, 2022 01:20PM UTC | 2 Agent replies | 1 Community replies | Feature Requests

Highlight requests containing a match

Hello! Would love to have a function within Proxy > HTTP History where if i look for a certain word, the requests within the HTTP history will become highlighted with my chosen colour. Example: You want to look for a...

Last updated: Feb 17, 2022 10:44AM UTC | 1 Agent replies | 0 Community replies | Feature Requests

License key for trail version

I have not received license key for burp suite professional trail version.

Last updated: Feb 15, 2022 10:04AM UTC | 1 Agent replies | 0 Community replies | Feature Requests

Is it possible to send request from a password reset post to forward to a different email

I am having issues with an old email that I registered on the website and it is impossible to have access to the email since the recovery key is linked to an old phone number which I had. I have formed the following Burp...

Last updated: Feb 12, 2022 06:35PM UTC | 0 Agent replies | 0 Community replies | Feature Requests

Enterprise - Export out an XML of the scan findings like BURP Pro

Currently, we have the options to Download Report, Scan Again, Download event Log, Download scan log, and delete, under the Scan "more actions" We need the ability to export out an XML file for Government reporting just...

Last updated: Feb 08, 2022 12:56PM UTC | 4 Agent replies | 4 Community replies | Feature Requests

Blind SQL lab.1

Hello everyone, I started to go through blind injections and ran into a misunderstanding of some requests ... ... Here: xyz' AND '1'='1 …xyz' AND '1'='2 I don't understand what those quotes ' ' are, in the first...

Last updated: Feb 08, 2022 08:11AM UTC | 1 Agent replies | 0 Community replies | Feature Requests

Lab quick restart feature

Hi, I want to ask if there is a way to quickly restart a lab? It is sometimes inconvenient to wait 15m for a lab to restart. Best regards

Last updated: Feb 07, 2022 04:15PM UTC | 1 Agent replies | 0 Community replies | Feature Requests

Create folders in repeater tab

Hi Portswigger, I use BurpSuite professionally every day, and I would like to request a feature that I have been missing for a long time. Would it be possible to include a way to create folders in the Repeater tab? This...

Last updated: Feb 03, 2022 01:13PM UTC | 2 Agent replies | 3 Community replies | Feature Requests

Import Burp Professional scan into Burp Enterprise

I would like to be able to import a burp scan (pro) into Enterprise, to use the tracking metrics and reporting features of Enterprise. Is this possible already?

Last updated: Feb 02, 2022 11:46AM UTC | 6 Agent replies | 8 Community replies | Feature Requests

Switch between REQUEST and RESPONSE window when scrolling through HTTP History

When scrolling through HTTP History, I generally just use the UP and DOWN arrows to go from one request to the next. I find it easier to have the sub-tab be the full page of the request / response rather than using the...

Last updated: Jan 28, 2022 04:14PM UTC | 1 Agent replies | 0 Community replies | Feature Requests

No Raw in Response when using Repeater

I copied my proxy intercept and pasted it in Repeater tab’s Raw. Then click GO (filled host&port), nothing is appeared in Response window. How can i do for see the response raw? (I’m doing webgoat missing function level...

Last updated: Jan 28, 2022 11:44AM UTC | 1 Agent replies | 2 Community replies | Feature Requests

Query sanitization

I heard if i use query sanitization sql injections don't work. so my question is : Is query sanitization also can prevent blind sql injections?

Last updated: Jan 27, 2022 09:48AM UTC | 1 Agent replies | 0 Community replies | Feature Requests

Option to create NSS key log file

It would be great to have an option in Burp to create a NSS Key Log file (https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/Key_Log_Format), it would really help debugging problems with SSL client certificates...

Last updated: Jan 25, 2022 09:07AM UTC | 2 Agent replies | 1 Community replies | Feature Requests

Page 5 of 50

Burp Suite Support Center

Your source for help and advice on all things Burp-related.

Burp Suite Support Center image