How do I? - Page 134 - Burp Suite User Forum

Embedded browser

Hello there, I have a problem when starting the proxy embedded browser. I get this error message "net.portswigger.devtools.client.ah: Unable to start browser" I'm using Kali Linux, user not root Thanks

Wow Where do I start as a beginner? On Web Security Academy??? Help plz

I'm a little overwhelmed with the Academy page. Is there an order to follow and build on? Where do I start as a beginner? On Web Security Academy??? Help plz

How to prevent scanner from accessing out of scope items?

When I set up a scan with a defined scope, the scanner is accessing resources that are out of scope. Simple example workflow: 1. Start a new temporary project 2. Add "https://example.com" to the target scope 3....

Would you please change our company and contact information?

I would like to politely request the update/change of our company name because innogy SE has been migrated/merged to the following company since the beginning of 2021: “E.ON Digital Technology GmbH” I have already...

Client certificate using Internet Explorer cert store?

Greetings, Is it possible for Burp to use the Windows (IE) certificate store? I've got a client whose process requires client certificates, but the IE+applet procedure stores it directly. Trying to export the result for...

Cross-site scripting : reflected --> justification

Hi Team, Need some help to suppress false positives for XSS as below. Is there a way where I can get an justification, because it just shows "File not found" exception in the response. How can we do this...

Vulnerable Javascript dependency : dataTable.min.js

Hi Team, We scanned our application in burp suite and we got issues in vulnerable JavaScript dependency for dataTables.min.js. It gave remedies to migrate the latest dataTables version. i.e. We detected jquery version...

Burp Suite Scanner - SSRF detection

Hi, With the recent Capital One breach, the SSRF vulnerability has been highlighted as a potential cause/method of the breach. My question is, does either the Burp Suite Pro or Enterprise version automatically detect...

Always getting Errors:request time out in audit status And Active phases alwasy shows finished with error

Burp Browser Error on Kali ( radeon nitro+ rx 5700 xt )

Hi Burp, I am facing trouble on rendering page on -Kali ( Linux kali 5.10.0-kali8-amd64 #1 SMP Debian 5.10.40-1kali1 (2021-05-31) x86_64 GNU/Linux ) -AMD GPU ( radeon nitro+ rx 5700 xt ) -java 16.0.2 2021-07-20 I...

Burp Enterprise deployment to Azure

Hi I have been following your tutorial guide to for deploying burp enterprise to azure. Everything appears to have deployed correctly. However I am stuck on the section for configuring connection security. Your guide says...

Having doubt

In many of the websites, if I enter invalid credentials and capture it with burpsuite the response shows the entire html source, in that if I add any script tag with alert it executed in some websites but not in all.Is this...

brupsuite installation

illegal-access

portswigger burp suite professional trial license

Hi How can I get portswigger burp suite professional trial license if I don't have organization email Thanks

"Errors:request timeout" audit status shown in multiple URLs for all web applications

Dear Team, I am getting "Errors:request timeout" audit status for multiple URLs while others are in scanning status which may end up as request timeout or done.Please help.

Install Burp Suite Enterprise on AWS

Hi There, I have a problem while I deploy Burp Suite on AWS cloud by follow this instruction https://portswigger.net/burp/documentation/enterprise/getting-started/cloud/deploy-aws. After I finished deploy IAM...

Web Security Academy (OAuth)

Hi, in the Web Security Academy OAuth topic, "Leaking authorization codes and access tokens" section. It notes that using "state or nonce protection" does not necessarily prevent these attacks because an attacker can...

Preventing scanner from selecting specific elements

Hi, Does anyone know if there is a way to prevent the scanner from selecting specific elements on the page? My current problem is basically that the scanner currently ends up getting to a "delete account" button....

Test Single page Apps (SPA)

Hi, I have noticed that the scanner is unable to scan URLs and relevant functionality in a single page application. Is there a recommended way to get the best out of Single Page Application scans?

How to Run Burpsuite RHEL8 LINUX Machine with GUI support

java version 11.0.12 in RHEL VERSION 8.4 (Ootpa) Installed successfully Burp suite community edition But not able to start from here with below command /opt/BurpSuiteCommunity/ java -jar...