Burp Suite User Forum

Login to post

trouble installing

Hello, Trying to run Burpsuite on Kali (Pi4b, Cortex-A72), running the latest Open-JDK and I keep running into issues. If I run the JAR i get: "invalid file (bad magic number): Exec format error" and if I run the...

Last updated: Nov 27, 2020 11:59AM UTC | 2 Agent replies | 2 Community replies | How do I?

Community version

Please advise can use the community version for my testing I've downloaded one but it it's not intercepting just wanted to see if I can use for my daily work and buy a full version later.

Last updated: Nov 27, 2020 08:26AM UTC | 1 Agent replies | 0 Community replies | How do I?

HTTP request smuggling, confirming a TE.CL vulnerability via differential responses

Hi I understood the principle of the lab and planned to test it. This lab environment should theoretically be TE.CL. First, I used this detection packet ...... Transfer-Encoding: chunked Content-Length:...

Last updated: Nov 27, 2020 06:50AM UTC | 2 Agent replies | 3 Community replies | How do I?

Intruder---xss playload add-ons

Hello this is Olek I would like ask about intruder scanner.If I scan some website looking for some xss.I have about 1000 payload. There is some add-ons for burp to check which payload suit for xss. for example <script>...

Last updated: Nov 26, 2020 01:41PM UTC | 1 Agent replies | 1 Community replies | How do I?

Lab: Information disclosure in version control history

Hi , https://portswigger.net/web-security/information-disclosure/exploiting/lab-infoleak-in-version-control-history I exhausted to find admin.conf(step 4) as solution indicate but can not make it. Can give a hint where is...

Last updated: Nov 25, 2020 08:17PM UTC | 3 Agent replies | 11 Community replies | How do I?

No load balancer seems to be created for BSEE CloudFormation

I am trying to set up BSEE via the instructions at https://portswigger.net/burp/documentation/enterprise/getting-started/cloud/deploy-aws. I have deployed the CloudFormation stacks, and they seem to have completed (according...

Last updated: Nov 25, 2020 05:00PM UTC | 2 Agent replies | 1 Community replies | How do I?

Admins, I didn't realize this was a public forum (thought it was chat with support team),

Admins, I didn't realize this was a public forum (thought it was chat with support team), can you please remove my email_id from the post?

Last updated: Nov 25, 2020 03:50PM UTC | 1 Agent replies | 0 Community replies | How do I?

Burp Enterprise from resource template

Hello, Having some problems deploying burp from the provided resource templates Setup the DB by hand per instructions and then execute the script. Afterward we get a bad gateway when hitting up against the...

Last updated: Nov 25, 2020 01:22PM UTC | 4 Agent replies | 3 Community replies | How do I?

How do I see milliseconds in request time?

Milliseconds doesn't exist in the request time format.

Last updated: Nov 25, 2020 12:34PM UTC | 3 Agent replies | 3 Community replies | How do I?

Having issue signing into the "Basic Clickjacking with CSRF token protection" lab

I'm unable to even start the lab (https://portswigger.net/web-security/clickjacking/lab-basic-csrf-protected). The provided credentials, carlos/montoya, do not work for me. Any ideas?

Last updated: Nov 24, 2020 04:02PM UTC | 10 Agent replies | 9 Community replies | How do I?

Burp intruder

Hi burp intruder start time add please. sample: - immediateyl - in *10* minutes - paused and add this option - start time ; (23:11:2020 22:00:15:654(millisecond)) The process will start at the specified...

Last updated: Nov 24, 2020 01:56PM UTC | 1 Agent replies | 1 Community replies | How do I?

How to trigger existing scan

HI need to trigger a existing scan using api. Nothing but how to rerun the scan.

Last updated: Nov 24, 2020 01:07PM UTC | 1 Agent replies | 0 Community replies | How do I?

Running passive checks without issuing new requests

I seem to remember that Burp used to be able (in the old 1.7 version) to apply all passive checks on the requests stored inside Burp. Is this still possible? I've tried right-clicking the in-scope hosts in the Target tab and...

Last updated: Nov 24, 2020 10:52AM UTC | 1 Agent replies | 0 Community replies | How do I?

Scanner Timed Out but Repeater Succeeds

I'm performing a scan of a specific page of an ASP.Net web application. From Logger++ I can see every request to the site and in the Comment column it states "Timed Out" and Status states "-1". But, if I take that request...

Last updated: Nov 24, 2020 10:36AM UTC | 5 Agent replies | 4 Community replies | How do I?

Install burpsuite professional

I have a valid licence.How do I install Burpsuite Professional

Last updated: Nov 24, 2020 09:52AM UTC | 1 Agent replies | 0 Community replies | How do I?

Authenticated Scan : Authorization header in every request used for SPA

Hi, I am stuck with authorization part for my application which uses "security token service" openid connect + oauth2. Application Working: 1)Login Page : Enter login credentials and click on submit button it will...

Last updated: Nov 24, 2020 09:42AM UTC | 6 Agent replies | 5 Community replies | How do I?

Burp Active Scan gives communication error

Hi,Burp Active Scan gives communication error but rest everything is running fine like intruder,Repeater , what is the issue then?

Last updated: Nov 23, 2020 04:30PM UTC | 1 Agent replies | 0 Community replies | How do I?

Lab#SQL injection attack, querying the database type and version on MySQL and Microsoft

Dear all, my question refers to https://portswigger.net/web-security/sql-injection/examining-the-database/lab-querying-database-version-mysql-microsoft. I already tried setting injectable parameter to following...

Last updated: Nov 23, 2020 02:17PM UTC | 2 Agent replies | 1 Community replies | How do I?

install burp pro in ubuntu

Hello sir/mam Iam Kannan.I will try to install.sh Linux File but that is not support in Ubuntu so pleas help me to install

Last updated: Nov 23, 2020 01:54PM UTC | 1 Agent replies | 0 Community replies | How do I?

BurpEnt custom inner DB port

Hi! We've purchased ent licences and already using software. We created wide spread install, including publications for outer (internet) agents to connect to grey LAN IP. But we cannot use default ports for connection and...

Last updated: Nov 23, 2020 11:23AM UTC | 1 Agent replies | 0 Community replies | How do I?

Page 1 of 143

Burp Suite Support Center

Your source for help and advice on all things Burp-related.

Burp Suite Support Center image