How do I? - Page 111 - Burp Suite User Forum

License key wasn't accepted after reinstall

Hi team.. I installed Burp Enterprise on one server and it was working fine. I tried to scan our web application (with login and password) and Burp Log showed error "libatk-1.0.so.0" (same problem from post "Unable to...

Issues with 'Blind SQL injection with out-of-band interaction' Lab

Hello PortSwigger Team, It seems that the recommended solution is not working correctly for me. I do currently have the professional edition of the Burp Suite and I am replacing the...

Create a new Object for burp.IHttpRequestResponse

Hi Team, One of my requirement is to add sitemap with a given byte[] request and byte[] response. I have tried calling the below method. IBurpExtenderCallbacks.getCallbacks().addToSiteMap(httpRequestResponse); I have...

Burp Enterprise licensing when I need to tear down and rebuild Enterprise & Agent servers

Hi Team. We have a requirement to tear down and spin up new servers in our environment on a scheduled basis. How does Burp Enterprise licensing work in this case? Do I need to re-apply existing licenses on my Enterprise &...

Lab Not Responding

Http Request muggling Lab 2 reeturns error when ent the smuggling request. The Response is: HTTP/1.1 400 Bad Request Content-Type: application/json; charset=utf-8 X-Content-Type-Options: nosniff Connection:...

Burp professional - updates and BApp store not working - proxy

Hi, We have a challenge with updating the Burp suite professional and connecting to BApp store. Our machines are behind corporate proxy with SSL inspection turned on, do this cause a problem with the updates and connecting...

cross site scripting (dom)

hi there burp is giving me this Issue detail The application may be vulnerable to DOM-based cross-site scripting. Data is read from window.location.pathname and passed to the 'append()' function of JQuery. Issue...

how do we calculate value for tranfer encoding??

POST / HTTP/1.1 Host: your-lab-id.web-security-academy.net Content-length: 4 Transfer-Encoding: chunked 87 GET /admin/delete?username=carlos HTTP/1.1 Host: localhost Content-Type:...

New Users Access Issues

Hi, I have administrator access for Burp Suite Enterprise, I have created new user account for my team members and gave them administrator access in Burp Suite Enterprise, users received the email with the password link,...

Change default port for Burp Enterprise after installation

Hi, I am evaluating Burp Enterprise and kept default port 8080 while installing. After a while, I installed some another application which runs on 8080. Now I am facing a port conflict issue in running Burp Enterprise. Can...

Find Uncompleted Academy Topics

Hi, Very tiny problem. I can tell from the % complete guide that I am 98% done with all topics. Problem is, search as I might, I can't find those missing last two percent. Is there an easy way to do this? I wish there...

Load a saved item (e.g. request)

Hi! This might be a basic question, but I recently saved a bunch of requests and I would like to load them back into the repeater for example or just otherwise be able to share them in a human readable format with the...

Issue in solving Multistep Clickjacking

values , as the 'click me' div elements line up with the buttons that need to be clicked but it's still not getting solved. Below is the code. Please help me on this. <style> iframe { ...

IP spoofing

I want to send a request to a website but also i want to my real IP be hidden in other words can i change my real ip from tcp packets inside burp suite? *i tried VPN and sent a reqest to a webserver then in the response,...

Request a fully-featured trial of Burp Suite Enterprise Edition

Attempting to register for a trial license via URL https://portswigger.net/burp/enterprise/trial but not accepting my work email address, being prompted with "Please enter a valid business email address" Can you please...

Trial version of pro BURP

Hello. I'am going through academy and faced with trouble when I need to use pro version of burp to solve some modules. So I decided to try a trial free version of pro Burp but I don't understand how I can get it. Even try...

Is there a way to copy text that retains prettified formatting?

Burp recently introduced native support for the prettified view that automatically indents responses in formats such as json. However, if I select what's on the screen and copy it, I end up with the raw unformatted...

Application gives 500 internal server only when I use Burp

Hi , I am using burp for all my applications I am working on and it works totally fine. But for one single domain it returns a 500 internal server when I use burp , if I turn the proxy off then the application loads fine...

How can I install burpsuite in Docker container ?

hello everyone, I'm trying to install Burpsuite Pro version inside Docker image but after running `installer.sh` I get an Error about "libfreetype.so.6: cannot open shared object file: No such file or directory", also I...

HTTP smuggling

"HTTP smuggling" I have some difficulty understanding the purpose of this attack. If we can't use directly sql injection Can this attack allow us to use sql injection?