Burp Suite User Forum
Hello there, I have a problem when starting the proxy embedded browser. I get this error message "net.portswigger.devtools.client.ah: Unable to start browser" I'm using Kali Linux, user not root Thanks
I'm a little overwhelmed with the Academy page. Is there an order to follow and build on? Where do I start as a beginner? On Web Security Academy??? Help plz
When I set up a scan with a defined scope, the scanner is accessing resources that are out of scope. Simple example workflow: 1. Start a new temporary project 2. Add "https://example.com" to the target scope 3....
I would like to politely request the update/change of our company name because innogy SE has been migrated/merged to the following company since the beginning of 2021: “E.ON Digital Technology GmbH” I have already...
Greetings, Is it possible for Burp to use the Windows (IE) certificate store? I've got a client whose process requires client certificates, but the IE+applet procedure stores it directly. Trying to export the result for...
Hi Team, Need some help to suppress false positives for XSS as below. Is there a way where I can get an justification, because it just shows "File not found" exception in the response. How can we do this...
Hi Team, We scanned our application in burp suite and we got issues in vulnerable JavaScript dependency for dataTables.min.js. It gave remedies to migrate the latest dataTables version. i.e. We detected jquery version...
Hi, With the recent Capital One breach, the SSRF vulnerability has been highlighted as a potential cause/method of the breach. My question is, does either the Burp Suite Pro or Enterprise version automatically detect...
Always getting Errors:request time out in audit status And Active phases alwasy shows finished with error
Hi Burp, I am facing trouble on rendering page on -Kali ( Linux kali 5.10.0-kali8-amd64 #1 SMP Debian 5.10.40-1kali1 (2021-05-31) x86_64 GNU/Linux ) -AMD GPU ( radeon nitro+ rx 5700 xt ) -java 16.0.2 2021-07-20 I...
Hi I have been following your tutorial guide to for deploying burp enterprise to azure. Everything appears to have deployed correctly. However I am stuck on the section for configuring connection security. Your guide says...
In many of the websites, if I enter invalid credentials and capture it with burpsuite the response shows the entire html source, in that if I add any script tag with alert it executed in some websites but not in all.Is this...
illegal-access
Hi How can I get portswigger burp suite professional trial license if I don't have organization email Thanks
Dear Team, I am getting "Errors:request timeout" audit status for multiple URLs while others are in scanning status which may end up as request timeout or done.Please help.
Hi There, I have a problem while I deploy Burp Suite on AWS cloud by follow this instruction https://portswigger.net/burp/documentation/enterprise/getting-started/cloud/deploy-aws. After I finished deploy IAM...
Hi, in the Web Security Academy OAuth topic, "Leaking authorization codes and access tokens" section. It notes that using "state or nonce protection" does not necessarily prevent these attacks because an attacker can...
Hi, Does anyone know if there is a way to prevent the scanner from selecting specific elements on the page? My current problem is basically that the scanner currently ends up getting to a "delete account" button....
Hi, I have noticed that the scanner is unable to scan URLs and relevant functionality in a single page application. Is there a recommended way to get the best out of Single Page Application scans?
java version 11.0.12 in RHEL VERSION 8.4 (Ootpa) Installed successfully Burp suite community edition But not able to start from here with below command /opt/BurpSuiteCommunity/ java -jar...
Page 134 of 310
Your source for help and advice on all things Burp-related.