How do I?

Move burpsuite to new server

Hi, I installed burpsuite and added some scans but now I need to move the setup to new server without loosing the configuration. How can I do that? I would need the scan urls and the db moved to new server. Thanks

Username enumeration via account lock

My session always times out before I can finish the attack. Any hints ?

Database transfer error

Hi, I am trying to tranfer database from embedded to external MSSQL. I followed the steps mentioned here - https://portswigger.net/burp/documentation/enterprise/getting-started/setup-ext-db I was able to create the...

API based Crawling and Scanning getting struck at 98%

Hi, I have initiated the burp suite API in Headless mode "java -Xmx4G -Djava.awt.headless=true -jar burpsuite_pro_v2020.4.jar" and refereed the project file and initiated the scan, after 95% progress of Crawl and Scan,...

Lab: 2FA bypass using a brute-force attack

Firstly, love all the labs you guys have, over 150 labs now, very impressive. Well done! For this lab "Lab: 2FA bypass using a brute-force attack", the solution is great, totally understand how it works etc. However,...

Insert Jenkins parameters / variables in Burp API POST - JSON scan definition

I'm using "Burp plugin for Jenkins" to initiate Burp scan from Jenkins. In Jenkins, I have parameters like scan URLs, application name, scan configurations etc. How can I use or insert these parameters in "Scan definition...

Cannot update Burp

Recently I seem unable to update Burp, or any of the extensions in the BaApp Store. My employer has deployed proxy settings, but due to COVID19 I'm working from home and with Firefox configured to use Burp as proxy, I'm able...

how to add X-Forwarded-For and what is columns in Lab Username enumeration via response timing

I dont know how to add X-Forwarded-For Header in burp suite and what is columns ? i need video for solution in Lab Username enumeration via response timing. thanks

how to change online prices

Guys can anyone tell step by step how to change the online prices for e commerce shopping

Get references and classification details

Hi, To capture all the issues reported by scanner, we are using IScanIssue to get all information related to Issue. But, this interface is not providing the information related to References and Vulnerability...

ERROR :: The embedded database requires file locking which is not supported by the selected data directory burp suite

Hi, I am unable to install BurpSuite Enterprise, Prompt with below error while installing can you please assist on priority. " The embedded database requires file locking which is not supported by the selected data...

Configure the max number of request during audit

Hi, I want to know if there is way to configure the max number of request Burp is making during an audit. I saw in the documentation that in audit option's audit optimization i can change the audit speed but it still won't...

How do I speed up BurpSuite when it's a proxy

I've tried Burp Suite in normal mode where I tell the web browser about it and in Invisible mode (with some network gear to get the request to & from), and it all works, but it's much slower than accessing the same Web app...

Upgrade Java to current version in Burpsuite Enterprise

I need to upgrade Java to the current version in Burpsuite Enterprise for security. I am using Burp Ent linux v2020_2. It is now using Java 9.0.4+11, which is not current. What is the procedure? What version of Java would...

Can't access websites when using burp suite

Hello, I have the community version of Burpsuite and I can't access websites when using it. I use Firefox and I configured the proxy like I saw on a tutorial.

Content-Security-policy

Dear Would you like to know about: Content-Security-policy Scripting, Cross-Frame Scripting and clickjacking Is it possible in a Scan on burp to locate all externs calls? I need identify all extrens call from...

Trial Version License Key for Professional

I want to use trial version for professional but i'm not able to use it could you please help me in this matter.

Licenses

Hi I just renewed three of our 5 licenses and co-termed them so i have a common expirtaion date. What i got is instead a single license for three users not three separated licenses for one user each. These licenses are...

Lab does not solve even if it is correct

Kindly help me with this, as none of the machines are showing solved.

Intercept mobile app traffic with VPN activated

I'm trying to intercept API calls from mobile app. The issue here is both ios/Android apps using vpn to connect to the server, so communication between them and burpsuite does not exist. Is there a way to configure this?