Burp Suite User Forum
Hi, I am trying to leverage Burp proxy to obtain the API calls in our custom web application. I have a series of automated tests that I would like to run while Burp is running to obtain a list of the POST APIs with their...
Hi PortSwigger. I registered for the Burp Suite exam, i received the confirmation email for the exam purchase. I also created an account in examity as per portswigger instructions mentioned in the email that I received...
Hi there! I was solving the lab where trackingID cookie is vulnerable to blind sql injection and one has to cause time delay of 10 secs. My question is this why do we have to concatenate our payload '|| (SELECT...
I'm new with Burp and trying to start a fresh list of HTTP History after each lab in web-security-academy.net. This way I'm not getting overwhelmed with data or mixing data with labs. However, once I select "Clear History"...
I'm starting in the academy lessons. In previous labs using other sites. The built-in browser was used within burp. I have a copy of pro, on Mac w/chrome. Do people use the built-in browser with proxy on Mac or Chrome...
I see the $9 exam offer and want to take advantage of it. However, I am not ready to take the test just yet. How long is the $9 offer good for? Do I buy it now and take it when I am ready, or, if I buy it now, do I have to...
Can anyone help me with the flow to go through all the topics of web security academy. Which topic to start with and to be followed.
Hi, Recently I downloaded and installed Burp Suite Pro Trail but the email I gave at the time of downloading did not show any license key. Please assist
I really want to exploit and see the vulnerability by myself if its really a vulnerability that is shown to me how do I exploit and see and validate what the Burp is telling me. It would help me to analyze the risk...
Hi Team, We have the licensed version for Burp Suite Professional. Please for your urgent support to provide the support document.
Is there a way to run an active scan that doesnt make requests with specific methods: such as post, put, patch, to avoid creating junk data on the target site
Hi, I'm trying to install the latest version of Burp Suite Pro onto a Windows 2016 server. However, while it's unpacking the bundled version of Java, it hits an error. I have tried with multiple versions of Burp to see if...
using latest BURP Community edition. I pushed a request to the repeater made some changes to the request send the request and get the response. the raw, and pretty print shows everything, yet when I render, it only...
Hi, i dont have any personal burp pro licence but my organization gives me burp pro for working. It is not purchased with my name, am i elgible for attending burp certification exam?
unable to access the lab - getting an error stating "An error occurred. We apologise for the inconvenience"
Hi Team, We are not able to configure the SWA with OKTA for Enterprise. Just opening the url and username and password are not passing. Please provide the solution for this.
Hi, I am using open vpn client with dns over https enabled on my browser which totally encrypts my traffic. Now,When I configure burp as an intercepting proxy in between then unencrypted dns traffic gets forwarded in...
Hi all. I'm working on solving lab "Reflected XSS into HTML context with most tags and attributes blocked". I get an alert and find a pare of tag / attribute but lab does not get marked as solved. My solution is:...
burp suite Errors recursive grep payloads cannot be used with multiple request threads
Trying to solve the lab 'Reflected XSS into HTML context with most tags and attributes blocked' I can't get the benifit of using the part '" onload=this.style.width='100px'>' where exactly should it submitted, I mean what...
Page 121 of 311
Your source for help and advice on all things Burp-related.