Burp Suite User Forum
absolute noob to this, why do I need to spam click the forward button for every action I want to do in the built in browser?
Hello, Is there a way to avoid the "&" character in Repeater when using HTML encoding? For example, to exploit XSS via this encoding (as mentioned here...
I am using Windows 10. To limit ram in Burp Suite, I need to run the following on the console. "java -jar -Xmx4g burpsuite_pro.jar" but I can't run it. I am getting an error like...
Hello PortSwigger please we need to Refund your product we take it from less than one month ago and it's not helpful to us so we need to refund it Best Regards
Or give me the product I paid for! or refund your money!
Hi Team, I have registered Web Security Academy free training. Which project i have to use in order to complete all my labs. Thanks Lalitha
Please, I'm currently learning Turbo Intruder and Burpsuite session management with Macro. First - Is it possible to use my macro rules on Turbo Intruder, I've tried but to no avail. Second - How do I use Turbo...
I can't dig the TXT record from the Burp Collaborator server. dig returns empty answer section $ dig txt dobc.mmquant.net @165.22.xx.xx ... ;dobc.mmquant.net. IN TXT I can see the DNS requests in the Burp...
i know i can use labs in portswigger to testing vulnerabilities but for HTTP request tunnelling i need to practice more than that is there any other labs or online sites to do some attacks like that? i have onother...
i'm using django in this address: 127.0.0.1:8000 i want to intercept it with burp suite how can i do that?
Hello, i downloaded the certificate file from burp suite, but when i am trying to import the certificate in Brave Browser, it does not show the cert.der file (in SSL Client Certificates category) and when i switch to show...
Hello everyone, I tried the burp-rest-API on testphp.vulnweb.com but I notice that the API issues report doesn't include the issues of the extension for example Vulners.com extension:...
Hello, I migrate my burp suite from linux (ubuntu) to windows and then I got message "No more activations allowed for this license". Only 1 user use this license. Would you like take a look for this problem ? Thank you
Hi concern, I just registered for trial version with organization id and but still I didn't received the link for download and customer number ..could you please help me in this matter. Thanks Namish Mohan
I can't download Burp proxy community edition, my mac says that it can't be downloaded because it says "It can’t be opened because Apple cannot check it for malicious software." Plz help, what can i do?
I don't understand how the content-length of the smuggler request is calculated in the lab that works as te.cl in request smuggling Can you help me 15 where does it come from? (It accepts limits between 10-15, I get an...
Hi! I'm currently working on the serialization labs. A tip on this page: https://portswigger.net/web-security/deserialization/exploiting says the following: "For users of Burp Suite Professional, Burp Scanner will...
Located at https://portswigger.net/web-security/request-smuggling/finding uri The request for "Confirming TE.CL vulnerabilities using differential responses" is given as "POST /search HTTP/1.1 Host:...
Hello, I'm trying to scan testphp.vulnweb.com through the Burpsuite REST-API but I notice that the issues results in the API is 165 but in the UI is more than 300
I am trying to create a docker image of Burp suite, two challenges showed up: 1. How to get a Burp Pro version and load the license in it without UI interaction? 2. I have some my own extensions as Jar files, how can I...
Page 105 of 307
Your source for help and advice on all things Burp-related.