Burp Suite User Forum

Create new post

Save Scan Report Wizard Defaults in Project Settings

Hello! We use Burp Suite with the Carbonator extension to scan our site automatically during regression testing with Selenium. Being able to run the scanner and create reports using Burp Extender is very useful, but the...

Last updated: Mar 29, 2018 10:31AM UTC | 1 Agent replies | 0 Community replies | Feature Requests

Use Collaborator in manual testing

I want to use collaborator while manual site testing. I think my case is very typical - I found some not typical SSRF vulnerability (which can't detect active scan) and want to check it. Now I must use my own NS server,...

Last updated: Mar 29, 2018 05:23AM UTC | 1 Agent replies | 1 Community replies | Feature Requests

Content Discovery: custom wordlist

The Content Discovery functionality allow the use of built-in wordlists, but does not facilitate a custom word-/filelist. While the built-in wordlists are OK, sometimes it's useful to be able to define a custom list, just...

Last updated: Mar 28, 2018 06:59PM UTC | 3 Agent replies | 4 Community replies | Feature Requests

Http headers manipulation

Burp tool is manipulating my http origin and referrer header. Please provide a way around to disable that

Last updated: Mar 23, 2018 06:34AM UTC | 0 Agent replies | 0 Community replies | Feature Requests

Compare site maps Reporting feature request

Requesting that the compare site maps feature be able to generate a report of the comparison output after display filters are applied. This would make it convenient to be able to provide a target organization a list of each...

Last updated: Mar 22, 2018 04:30PM UTC | 1 Agent replies | 0 Community replies | Feature Requests

Session Handling rules

Hi. It would be nice to have an option to update the session headers in the session rules. There exist a simillar option that allows us to update parameters and cookies, so why not the headers? I had an issue where the body...

Last updated: Mar 22, 2018 11:51AM UTC | 1 Agent replies | 1 Community replies | Feature Requests

scroll with wheel in preview tab

Currently scroll wheel doesn’t work for the preview tab of a response. It works for all the other tabs. Even better if we can scroll horizontally by holding Shift when scrolling. See...

Last updated: Mar 16, 2018 11:23AM UTC | 1 Agent replies | 0 Community replies | Feature Requests

Scan for .DS_Store files

Check out this writeup: https://en.internetwache.org/scanning-the-alexa-top-1m-for-ds-store-files-12-03-2018/ It would be cool if burp suite could automatically check for .DS_Store files on websites, parse the content,...

Last updated: Mar 16, 2018 09:56AM UTC | 1 Agent replies | 0 Community replies | Feature Requests

Custom Attributes on issues

Add IssueAttributes[] to the IScanIssue object that would get exported with the xml report. Name/Value pairs would suffice, however, nested objects would be awesome. This new property would have to come with all the...

Last updated: Mar 12, 2018 08:43AM UTC | 1 Agent replies | 0 Community replies | Feature Requests

Add new request to outstanding Macro

I'm using Macro editor quite often for anti CSRF tokens, as well as session management. However, when I would like to add a single request to the current macro, I need to re-record the entire macro again. Would it be...

Last updated: Mar 08, 2018 09:21AM UTC | 1 Agent replies | 0 Community replies | Feature Requests

Allow Match and Replace to change destination hostname

Please allow the Match and Replace function to change the destination address as well. It would make it easier to test certain scenarios where requests have to be rediredted to different hosts.

Last updated: Mar 08, 2018 04:01AM UTC | 3 Agent replies | 3 Community replies | Feature Requests

Search through nested values

Hi, I've posted a FR on Twitter (https://twitter.com/ddouhine/status/938025572596412418) which has been added to the dev backlog but I put it here too in case of... BurpSuite handles nested insertion points for the...

Last updated: Mar 07, 2018 09:57AM UTC | 0 Agent replies | 0 Community replies | Feature Requests

In Repeater automatically add answers to the site map

Hello, I use the Repeater a lot to find new pages/behaviors on web servers but each time I find something interesting I need to right click on the response, click on "Add to site map" and then confirm. A total of 3 clicks...

Last updated: Mar 07, 2018 08:46AM UTC | 2 Agent replies | 1 Community replies | Feature Requests

One scanning queue per host ?

Hello, When you have to work on multiple targets (hosts) and launch a scan on all of them, the scanning time is slowed down because you have a single queue. This single queue means that Burp have to finish scanning host1...

Last updated: Mar 07, 2018 08:44AM UTC | 3 Agent replies | 3 Community replies | Feature Requests

Manually add a cookie in the cookie jar

Hello, I could be helpful to add a button in the Cookie Jar viewer window to manually "Add a cookie". Davy

Last updated: Mar 07, 2018 08:39AM UTC | 2 Agent replies | 2 Community replies | Feature Requests

Mouse over automatic decoding

Hi, It could be cool to have an automatic decoding (e.g: base64 decode) when you move your mouse over an encoded value anywhere in the tool (instead of selecting it, right-click on send to decoder, etc...). I know, i'm...

Last updated: Mar 07, 2018 08:35AM UTC | 2 Agent replies | 2 Community replies | Feature Requests

extension to the intruder api

Hi, I was wondering if you guys had any plans to bring an update to the burp-api, containing an extension of the api for the intruder? If not - it would be awesome if it were possible to use the intruders...

Last updated: Mar 05, 2018 08:52AM UTC | 1 Agent replies | 0 Community replies | Feature Requests

Global settings for SSL pass-through

It would be great if we can configure SSL pass-through globally. For example, Google Analysis and Google Translation are typically out of scope of ordinary user. Current per-project setting is expected to override global...

Last updated: Feb 28, 2018 04:26PM UTC | 1 Agent replies | 0 Community replies | Feature Requests

Configuration problem

When i configure my burp suite proxy with my firefox browser they connect but when i browse anything browser show me error message how i solve this problem please help me

Last updated: Feb 27, 2018 09:41AM UTC | 1 Agent replies | 0 Community replies | Feature Requests

Preview bitmap images (BMP)

It would be great if we can preview bitmap images in proxy preview, just like how we preview HTML, JPEG and PNG traffics. MIME type is “image/bmp”. Burp seems to be built with Swing/AWT; if so, it should be easy to implement...

Last updated: Feb 15, 2018 10:05AM UTC | 1 Agent replies | 0 Community replies | Feature Requests

Page 52 of 64

Burp Suite Support Center

Your source for help and advice on all things Burp-related.

Burp Suite Support Center image