How do I? - Page 108 - Burp Suite User Forum

Content Discovery on a specific folder on a website

Hello, I have a question. There are more then 3 files stored on the website https.test.com/module I want burp to **ONLY** look and locate .lua files on the specific directory. How would I be able to do that with...

Burp Pro logs to help with troubleshooting?

Hi everyone I have the Burp Pro client installed on a Windows 10 laptop. Recently I've encountered the following, 1. I'm unable to access the BAppStore to add or refresh extensions. I get the standard "Refresh failed"...

Communication Error

Hi, I have a problem where in the log it notifies that there is a communication error to the URL I am scanning. However, I am doing a login scan and in the event logs of the item being scanned I see that there are a lot...

Is it possible to set a proxy for burp without declaring the environment variables?

Hello, I've been struggling for months to answer this question, but without any success. Is it possible to set a proxy for burp without declaring the environment variables? The server I am trying to pentest refuses...

error in : SQL injection attack, querying the database type and version on MySQL and Microsoft

hi i have an error in lab "SQL injection attack, querying the database type and version on MySQL and Microsoft" i type the correct query in lab but this error show :"Internal Server Error" correct query:...

xss -reflected

hi Team I would like ask about xss reflected.I use repeater and I'm able insert xss JavaScript payload in website .But this not works when I create CSRF poc.Only when I used repeater. Burp also say my this is XSS...

Proxy server for updates

Hi there! Can't get a zScaler proxy working with anonymous logins (SSL inspection disabled) 2020-09-11 12:07:33 WARN e.p.e.s.alerts.AlertFailureListener - Failed to connect securely to server...

Couldn't get response in Burp repeater

While doing Web cache poisoning with an unkeyed header Lab The request I sent with burp repeater either I get no response or "GET requests cannot contain a body" I am getting.

Resource pool tab not showing in intruder tab

In my intruder tab resource pool is not showing what should I do to enable it ? Please tell me

Clear existing Database for fresh install

Hi, We already have burpsuite which is initailly installed in 2020 and has the upgrade functionality within the product, but with this we are having both Java 9 and Java 11 in our directories which is causing the...

understanding different encoded character when typing in URL compared via burp suite repeater

Hi All, First time poster and hoping to understand how webpage url changes certain character compared to typing it via Burp suite repeater and turning on 'URL-encode as you type'. I am currently doing the BurpSuite lab...

erro in lab

hi i have an error in access the lab when i click "access the lab " this message appears : "An error occurred. We apologise for the inconvenience." what should i do now ?? thank you

Duplicated charges.

Good Morning. We need to verify the reason for the charges that occurred in a duplicate manner as follows Date Actions Order number Amount 29 June 2022 View paid invoice 1C3D68064D $399.00 28 June 2022 View paid...

License limit

Hello can you please increase activations on iso@open.ru? Thank you. Still 2 users, new devices.

Unable to access the labs

Hi Team, I am not able to get the access to the labs since last 30 mins? Any specific issues or maintenance window open? Thank you.

How to make 'open exisiting project' empty

When I open the burp, I find an 'open exisiting project' with the files I opened earlier I want to delete the files from the burp but they are not deleted from the original file

Academy problem

labs are not opening and sending this massage:- An error occurred. We apologise for the inconvenience.

Reflect traffic from mobile app in my Burp Suite

I need to send the traffic from mobile apps to my proxy (Burp). When I finally did it, I found out that everything is working only in Windows. The traffic from mobile apps is reflected in a Burp only in a Windows OS. When...

Intercepting requests on VPN

Hi, I am using BURP on my local system and trying to capture the requests withing the BURP tool. I usually access my application via VPN. BURP intercepts when the VPN is down, when connected to my VPN I do not see any...

Lab: DOM XSS using web messages and JSON.parse

Hey, the Solution Payload is following: <iframe src=https://your-lab-id.web-security-academy.net/ onload='this.contentWindow.postMessage("{\"type\":\"load-channel\",\"url\":\"javascript:print()\"}","*")'> Can anybody...