Burp Suite User Forum

Login to post

Custom Macro Parameter in URL Definition

Hi Portswigger Team, I've noticed that more and more websites use a one-time login page. The landing page defines a one-time valid login request. Since the one-time value is in the URL itself and is no GET parameter (I...

Last updated: Jul 14, 2021 09:52AM UTC | 4 Agent replies | 3 Community replies | Feature Requests

Response Time Column in Intruder?

Hello, I like to see response time and as I know I can't display it as a column in Intruder. Is there a way to do it? If not do you plan to add this feature soon? Thank you

Last updated: Jul 13, 2021 08:11AM UTC | 5 Agent replies | 5 Community replies | Feature Requests

exploit server limitations

During doing one of the labs, I encountered a limitation: it is impossible to create two endpoints with different exploits because after saving the last exploit, the previous gets erased. It forces one to try to put...

Last updated: Jul 13, 2021 07:33AM UTC | 2 Agent replies | 1 Community replies | Feature Requests

Ability to mark multiple issues as FP

Hi, We've been auditing issues on Burp Enterprise and found it very frustrating to have to individually mark every issue as FP. It would be great to have an option to select various issues and then apply the FP flag to...

Last updated: Jul 12, 2021 01:40PM UTC | 1 Agent replies | 0 Community replies | Feature Requests

View Issue details from Audit Items

In previous versions of Burp, when issues were detected while scanning a URL, it would show up in varying colors of severity. When you double-clicked that URL item in the scan queue - it actually showed you specific details...

Last updated: Jul 09, 2021 11:24AM UTC | 1 Agent replies | 0 Community replies | Feature Requests

Adding an auto response from file feature

Hi, In fiddler, there is a feature called AutoResponder which allows setting a rule for a specific URL. If the rule matches, the file content set in the rule will be provided in the response instead of the original...

Last updated: Jul 09, 2021 09:36AM UTC | 1 Agent replies | 0 Community replies | Feature Requests

Rendering JSON in pretty form in response body

Hi, Please consider rendering application/json content in response.body in a pretty form. Today, I am forced to copy+paste the content into another tool to view it in pretty form. Thx Chaks

Last updated: Jul 08, 2021 01:02PM UTC | 3 Agent replies | 2 Community replies | Feature Requests

SSO and LDAP integration for Burp Enterprise

After setting up the initial infrastructure and promoting the solution among projects, the team size quickly started to grow and it already became painful to manually manage the user accounts. It would be very beneficial...

Last updated: Jul 08, 2021 08:22AM UTC | 10 Agent replies | 11 Community replies | Feature Requests

Intercepting a Reqest in brup suite of any website that was running through vpn.

I can able to intercept a request in Brup suite of any website that was running through WI-FI but I was unable to intercept a request of website that was running through vpn. Can anyone help me

Last updated: Jul 06, 2021 09:23AM UTC | 1 Agent replies | 1 Community replies | Feature Requests

open burpsuite i get following error

Here I provide full output after I launching Burp Suite : C:\Users\MR-ROBOT\Desktop\Burp_Suite_Professional_2021.2.1_Build_5962>java -noverify -javaagent:burploader.jar -jar burpsuite_pro_v2021.2.1.jar Error: A JNI error...

Last updated: Jul 05, 2021 07:40AM UTC | 1 Agent replies | 0 Community replies | Feature Requests

websockets 'Send to' repeater & intruder

More and more of the Web apps I am pen-testing rely on Websockets for their main communication channel, and vector for XSS/sql-injection/CSRF etc. This would be very helpful if the functionality existing that exists for...

Last updated: Jul 02, 2021 01:44PM UTC | 8 Agent replies | 14 Community replies | Feature Requests

Change license from one host to another

I need to install the Burp Enterprise and Burp Pro on another servers. At the moment I make the installation it informs that the license is already active.

Last updated: Jun 30, 2021 07:48AM UTC | 1 Agent replies | 0 Community replies | Feature Requests

Cross-domain script include - SRI ignored

The scanner reports Cross-domain script include which is a good point. However, scripts included in the web application with or without SRI are put in the same issue. It could be interesting to have a two different...

Last updated: Jun 28, 2021 08:34AM UTC | 1 Agent replies | 0 Community replies | Feature Requests

reverse shell

Hi I'm not to smart but I would like ask about reverse shell.I see people a lot time telling about it .I only ask it is possible implement this in burp as feature.I see similar tools here...

Last updated: Jun 21, 2021 11:25AM UTC | 1 Agent replies | 0 Community replies | Feature Requests

Add time counter between Intruder requests (initiate an Intruder request every x seconds/minutes)

Hello there, I would like to request a new feature be added to Intruder. I have come across web applications that use the time between requests to control against brute force attempts. As an example, if a user account has...

Last updated: Jun 21, 2021 10:20AM UTC | 3 Agent replies | 2 Community replies | Feature Requests

Pentesting limitations

I am planning to buy a BurpSuite Professional subscription and I would like to know if there are any limitations on the number of tests/pentests that can be done on a single account or on a single machine in a year.

Last updated: Jun 21, 2021 08:05AM UTC | 1 Agent replies | 0 Community replies | Feature Requests

Problem for "Connection Reset"

hello,I have a problem,after I use Brupsuite to capture packets and release packets, I will be prompted that the connection has been reset. At first, I thought it was the website's reason, but it's not. When I capture my...

Last updated: Jun 21, 2021 08:03AM UTC | 1 Agent replies | 0 Community replies | Feature Requests

Problem for "Connection Reset"

hello,I have a problem,after I use Brupsuite to capture packets and release packets, I will be prompted that the connection has been reset. At first, I thought it was the website's reason, but it's not. When I capture my...

Last updated: Jun 21, 2021 08:02AM UTC | 1 Agent replies | 0 Community replies | Feature Requests

differentiate burp releases

https://portswigger.net/burp/releases Can you please release "Early Adopter" with additional prefix? It would be good to have a standard prefix like "pre-release.tar.gz" This is required for Linux distributors and...

Last updated: Jun 16, 2021 12:25PM UTC | 1 Agent replies | 0 Community replies | Feature Requests

filtering in http poroxy history, not only exact string, but also some preceeding/succeeding lines

when searching for a specific string to show up in history, could you make a +-40 lines option to include those requests near the call you are looking for?

Last updated: Jun 16, 2021 09:42AM UTC | 1 Agent replies | 0 Community replies | Feature Requests

Page 5 of 45

Burp Suite Support Center

Your source for help and advice on all things Burp-related.

Burp Suite Support Center image