Burp Suite User Forum

Login to post

Support TLS decryption with pre-master secret

We are currently building a tool for extracting pre-master secret (PMS) values from memory of mobile devices. It would be great if Burp supported the decryption of TLS traffic with a list of PMS values just like Wireshark...

Last updated: Jun 06, 2016 01:21PM UTC | 1 Agent replies | 0 Community replies | Feature Requests

global parameters

Burp contain few tools that allows export data, like Logging.. turn the project name and some other parameters to a global parameter will allow to use it while exporting data. for example, in the logging tool while picking...

Last updated: Jun 03, 2016 10:08AM UTC | 0 Agent replies | 0 Community replies | Feature Requests

seperate issue window that is detachable

hi, I really liked the old burp where the issues found by scanner are in the scanner window's tab. Now its in the target tab and for me it making me difficult to work with. contents frame in the sitemap tab has been...

Last updated: May 20, 2016 08:28AM UTC | 1 Agent replies | 0 Community replies | Feature Requests

Web interface (or other out-of-band) "emergency save state" function for use when UI has locked up

Burp is a truly fantastic product. However, I regularly encounter situations in which the GUI for it locks up. Of course, this tends to happen when I'm in the middle of a pen test and haven't saved my state for an hour or...

Last updated: May 20, 2016 08:25AM UTC | 1 Agent replies | 0 Community replies | Feature Requests

Archive or clear requests without deleting them?

Sometimes in a large project, I may have 40000+ requests. This makes filtering very slow and sometimes appears to make Burp freeze. Is there any way to remove requests from the current list without deleting them? I still...

Last updated: May 16, 2016 12:28PM UTC | 1 Agent replies | 0 Community replies | Feature Requests

Collaborator interface for extensions

Although extensions can perform active and passive scans, AFAIK they have no access to collaborator, thus cannot verify out-of-band interaction. Am I mistaken? If no, it would be a great thing to have.

Last updated: May 13, 2016 09:54AM UTC | 1 Agent replies | 0 Community replies | Feature Requests

Orchestrate Repeater Requests

It is often needed to orchestrate or time (as in timing) a sequence of requests in relation to one another. Simple Examples: 1) Send Request '1' 2) Wait 1 second 3) Send Request '2' This is hard to do manually...

Last updated: Apr 28, 2016 07:53AM UTC | 1 Agent replies | 0 Community replies | Feature Requests

Show Platform Authentication header on proxy requests

The platform auth is removed form the header shown in the proxy tab (also you see only one request). It would be useful to see these headers and the full request to understand when the auth is done...

Last updated: Apr 26, 2016 11:44AM UTC | 0 Agent replies | 1 Community replies | Feature Requests

disable Payload encoding and auto load payloads through API

It would be nice if the payloads get automatically loaded from custom file when invoking sendToIntruder method and API method to disable URL encode these characters through API. Thereby launching the attack through API

Last updated: Apr 25, 2016 03:05AM UTC | 2 Agent replies | 3 Community replies | Feature Requests

Proxy: Warn when leaving the project scope

It would be a nice little feature for manual testing if burp would show a warning in the browser, when leaving the configured scope while browsing a site. The warning should only be displayed in the browser and give a...

Last updated: Apr 20, 2016 07:56AM UTC | 1 Agent replies | 0 Community replies | Feature Requests

Workbench for items that one wants to take a closer look on later

It'd be a neat feature if burp would have some sort of "Workbench", where one could send requests to that one wants to inspect later. I often find myself in a situation where I'm quickly checking autoscan results and...

Last updated: Apr 18, 2016 10:41AM UTC | 1 Agent replies | 0 Community replies | Feature Requests

Restore scan queue issues column

I have been using Burp for many years and appreciate all the updates and features. One feature/bug that have been bugging (pardon the pun) me is when one restores a previous Burp state, the Issues column in the scan queue...

Last updated: Apr 13, 2016 08:21AM UTC | 1 Agent replies | 0 Community replies | Feature Requests

Pass back in "Run post-request macro"

Currently, a session handling rule running a post-request macro can pass back to the invoking tool either: - the response from the current request - the final response from the macro In multi-step work-flows, it is...

Last updated: Apr 11, 2016 09:08PM UTC | 1 Agent replies | 1 Community replies | Feature Requests

Not only log time but also log date

L.S. I use Burp Suite to log browser activity for a long period. Within the log on disk and on the HTTP history only the time of a request/response, not the date, is logged. Could you please also log the date in a...

Last updated: Apr 10, 2016 08:59AM UTC | 1 Agent replies | 0 Community replies | Feature Requests

NoSQL

Does Burpsuite or any of its add ons support checks for NoSQL databases?

Last updated: Apr 06, 2016 07:24PM UTC | 2 Agent replies | 1 Community replies | Feature Requests

Audible Alerts

Would like to add this feature - where is a error - say network issue that has made the scan to stop - in that case, we would like to have a audible alert. This would help the user to focus his attention on other tasks...

Last updated: Apr 04, 2016 07:34PM UTC | 0 Agent replies | 1 Community replies | Feature Requests

Filter Bypass Scanner Options

Filter bypass options for the scanner would be useful. Just from a SQLi perspective, it would be great if I could have radio buttons that could enable SQLmap tamper script style payload modification options such as...

Last updated: Mar 14, 2016 09:28AM UTC | 1 Agent replies | 1 Community replies | Feature Requests

Add a parameter to the scanner exclude list via right-click context menu on the Param tab

I hope it doesn't take much work to add this feature to the current version. It would really be helpful if you can just right click on any parameter and add them to the exclude list of scanner rather than doing a copy and...

Last updated: Mar 07, 2016 02:28PM UTC | 1 Agent replies | 1 Community replies | Feature Requests

Log Files

I would like to ask for a feature that would allow me to choose a maximum file size for each log type(much like what i do with tshark for packet capturing). This would force burp to create a new log file everytime the file...

Last updated: Mar 06, 2016 08:18PM UTC | 0 Agent replies | 0 Community replies | Feature Requests

Burp Extender - Support for more details from IScanQueueItem

Hi Burp Team, Good day! We have been using active scanner in our CI builds on a regular basis. However, sometime active scan queue items get stuck/slow/become stale and they appear to make little to no progress for a...

Last updated: Mar 04, 2016 07:23AM UTC | 1 Agent replies | 1 Community replies | Feature Requests

Page 57 of 62

Burp Suite Support Center

Your source for help and advice on all things Burp-related.

Burp Suite Support Center image