Burp Suite User Forum

Login to post

Love horoscope for today

<a...

Last updated: Aug 28, 2015 06:35AM UTC | 0 Agent replies | 0 Community replies | How do I?

export scan report in headless mode?

If we run Burp in headless mode, can we export scan reports? If so, what are the command line options for that? We run our own python scripts that send HTTP requests, which pass through Burp and Burp does active scanning....

Last updated: Aug 27, 2015 08:46AM UTC | 1 Agent replies | 0 Community replies | How do I?

Is there a way to suppress ASP.NET_SessionId cookie tests?

The developers of our application say they don't manipulate the ASP.NET_SessionID cookie (in fact, they couldn't do it even if they wanted to). It is a Microsoft .NET cookie out of their control. A bunch of errors are...

Last updated: Aug 27, 2015 08:28AM UTC | 1 Agent replies | 0 Community replies | How do I?

CVE ID

How to find CVE ID of the scan report

Last updated: Aug 26, 2015 08:15AM UTC | 1 Agent replies | 0 Community replies | How do I?

What people food can dogs eat

<a href=http://peoplefood.cf/in-that-moment-we-can-actually-agree-on-one-thing-and-that-is-that-the-celebration>http://peoplefood.cf/in-that-moment-we-can-actually-agree-on-one-thing-and-that-is-that-the-celebration</a> ...

Last updated: Aug 25, 2015 11:05AM UTC | 0 Agent replies | 0 Community replies | How do I?

Whittier narrows golf course

<a href=http://golfcenter.cf/moreover-since-lead-users-often-attempt-to-fill-the-need-they/>http://golfcenter.cf/moreover-since-lead-users-often-attempt-to-fill-the-need-they/</a> <a...

Last updated: Aug 25, 2015 07:54AM UTC | 0 Agent replies | 0 Community replies | How do I?

Estimating time taken for Application security testing

Though not related to Burp Suite, thought of posting here so that some one could share their thoughts I would like to do some kind of estimation for time taken to scan a website using Burp Suite. I will be testing...

Last updated: Aug 24, 2015 10:55AM UTC | 3 Agent replies | 2 Community replies | How do I?

Rock music online

<a href=http://rock-music.cf/the-show-is-the-creation-of-garrett-sherwood-ryan-j-hayes-and-jon-peter/trackback>http://rock-music.cf/the-show-is-the-creation-of-garrett-sherwood-ryan-j-hayes-and-jon-peter/trackback</a> <a...

Last updated: Aug 22, 2015 11:29AM UTC | 0 Agent replies | 0 Community replies | How do I?

Future news

<a href=http://futures.cf/take-a-deep-breath-he-says-you-have-friends-in-the-industry-who-understand>http://futures.cf/take-a-deep-breath-he-says-you-have-friends-in-the-industry-who-understand</a> <a...

Last updated: Aug 22, 2015 07:32AM UTC | 0 Agent replies | 0 Community replies | How do I?

Session handling rules - cookie not set for POST request

I have set up a session handling rule that sends a certain cookie for all requests to a certain domain. What I have found however, is that that the cookie will be sent on all GET requests to the domain, but not sent with...

Last updated: Aug 19, 2015 09:56AM UTC | 1 Agent replies | 0 Community replies | How do I?

Reporting of Frameable Response (Potential Clickjacking)

I scanned 30+ URLs using burp suite tool. 4 URLs were reported for Frameable Response (Potential Clickjacking) While all the URLs that were scanned missed the X-Frame-Options header, why only 4 URLs were flagged for this ?

Last updated: Aug 19, 2015 09:55AM UTC | 1 Agent replies | 0 Community replies | How do I?

Bad Request 400 Error

On Intercepting my Asp.Net application in the place of Http/1.1 with Http/1.1 200 OK it is showing bad request error.What should I do to redirect this to default error page.I have already Http errors and Custom error in...

Last updated: Aug 18, 2015 10:33AM UTC | 1 Agent replies | 0 Community replies | How do I?

What is the best way to handle SQL Injection errros reported by BURP in a PHP – Apache environment?

BURP suite is reporting SQL Injection errros, whats best possible way to handle those errors in a PHP – Apache environment.

Last updated: Aug 17, 2015 08:50AM UTC | 1 Agent replies | 0 Community replies | How do I?

Database scanning

Is Burpsuite capable of performing vulnerability scans against databases ? I have seen and there is no option, but just wanted to confirm with the experts. Also, do we have a security standard for databases as we have...

Last updated: Aug 17, 2015 05:04AM UTC | 1 Agent replies | 1 Community replies | How do I?

Collaborator Log Messages

We are testing a private collaboration server that is exposed to the Internet. When I came back from lunch I saw this in the console: 2015-08-05 12:40:12.508 : Request received:...

Last updated: Aug 14, 2015 03:06PM UTC | 1 Agent replies | 1 Community replies | How do I?

No UI after launching BUrp from command line

When I try to launch Burpsuite v1.6.01 from my 32-bit Ubuntu-12.04LTS, it shows message "Proxy:Proxy service started on 127.0.0.1:8080" but no UI is displayed means Burpsuite App is not launched. -My PC has a second...

Last updated: Aug 10, 2015 11:10AM UTC | 2 Agent replies | 2 Community replies | How do I?

ASP.NET forms authentication login redirect

Can Burp Suite support a login redirect where the login page is not within the scope? I have a /Employee and a /Customer area within my ASP.NET MVC application. For ease of development, the login URL in Web.config is...

Last updated: Aug 10, 2015 10:48AM UTC | 1 Agent replies | 0 Community replies | How do I?

Burpsuite is not starting

When I try to launch Burpsuite v1.6.01 from my 32-bit Ubuntu-12.04LTS, it shows message "Proxy:Proxy service started on 127.0.0.1:8080" but no UI is displayed means Burpsuite App is not launched. -My PC has a second...

Last updated: Aug 10, 2015 08:26AM UTC | 1 Agent replies | 0 Community replies | How do I?

How do i replace a value that is sent in multi-part/form-data body of a request?

Dear all, I have the following Form data, that is sent through HTTP POST to a site: -----------------------------10935559812996 Content-Disposition: form-data;...

Last updated: Aug 10, 2015 08:05AM UTC | 1 Agent replies | 0 Community replies | How do I?

Burp Collaborator - Wildcard certificate problem

Hi all, I have an internal collaborator Server up and running on a physical server with the following config: { "serverDomain" : "collaborator.test.com" "eventCapture" : { "https": { "hostname" :...

Last updated: Aug 03, 2015 01:29AM UTC | 3 Agent replies | 1 Community replies | How do I?

Page 138 of 143

Burp Suite Support Center

Your source for help and advice on all things Burp-related.

Burp Suite Support Center image