How do I? - Page 145 - Burp Suite User Forum

Burp Pro

I'm having issues installing Burp Pro, on my Linux Cent OS 7. I downloaded the sh file and I tried to run it vi from the terminal and I received an error stating that there was an issue opening the file. The file you opened...

BurpSuite Pro REST API

is it possible to use the GET /SCAN/[task_id] to obtain information on a running "live audit". id like to know details like how many requests it is making currently, how many queued, how many issues found etc. i can see...

Ignored Insertion Points when request body is JSON

Hi everyone. I have a simple POST request whose body is JSON. { "key1":"value1", "key2":"value2", "key3":"value3" } In my audit scan I want to exclude injection checks on the "value1" field but no amount of regex...

Burp pro installation failure on Amazon linux ec2 | Failed to create Burp project: java.lang.reflect.InvocationTargetException

Hi, I am trying to install Burp on Linux amazon2 ec2. Issue: "Failed to create Burp project: java.lang.reflect.InvocationTargetException" Command Used- java -jar -Xmx1024m burpsuite.jar and java...

How to Remove Confidence Level "Tentative " from the Burp report

We do not want to see issues in burp report with the confidence level "Tentative". Please let us know the settings from where we can disable this open. Regards Anubhuti Vyas

access lab issues

whenever i am trying to access my lab my account is automatically logout and i am not able to solve my lab. this is all thing are happened from tomorrow. i want it solution.

Download Software from CLI

Looking to download burpsuite enterprise and would prefer to do it at the server via CLI or through web request. Is there a way to do this?

Lab: Authentication bypass via OAuth implicit flow - Request Not going through Burp Proxy.

While doing this lab, when i login, after this request (GET /oauth-callback HTTP/1.1), the website is unable to send the (POST /authenticate) request. I tried in mozilla and Chrome. Whenever the oauth-callback request is...

Can't restart the Lab

Dear Team, I by mistake changed the password of the wiener in "User ID controlled by request parameter with password disclosure" Lab. Now I can't log in with this user and can't solve the lab. Can you please change it to...

There was a problem checking your license

Hi I have installed burp suite enterprise edition. On uploading the license provided by portswigger account, i am getting "There was a problem checking your license". On checking the url call, Request URL:...

Problems activating an account

Dear support, We have a professional licence, but we are having problems to activate that. We have had to use the licence in non-persistent virtual machines, so the licence were activated several times, now the activation...

GET Method

I'm trying Burp Suite on DVWA to do brute force for practice purposes. When i capture a request, i only get POST method. How can i get a GET request?

Hosts do firefox poluindo visualização do HTTP history

Olá portswiggers. Eu uso o burp suite junto com firefox, sem que deixo interceptar todas as transações sempre me aparece conexões do firefox. Isso está poluindo minha pesquisa, mesmo aplicando filtros ainda conseguem...

Lab: Username enumeration via account lock

I am trying on this lab with 1 to 5 on payload 1 . I set the invalid password 20 letters long to get response time but my session is keep getting expired when i reach the testing around 400th attack out of 500 in total....

Use burp suite to test application which uses Social Logins (like Google , LinkedIn)

Hi, My application uses social login (Google,Linkedin). I want to run a live scan and want burp to be able to scan the protected parts of the application as well. I am not able to find a document which guides on this. Is...

searching in all burp history for all(targets) tested

as we know searching in burp for any word it is east but that only for current instance but after years of testing a lot of projects i need some time to search in all these tested projects to search for some words, please...

Delete my account

Dear Concern, I request you to please delete my account.

Static Analysis (SAST) and Dynamic Analysis

Dear, I would like to know if it is possible to perform static and dynamic analysis of code for an API developed in C #. Greetings

Constantly updating

Hello Burp, my question is when it comes to updates my Burp on my Windows OS automatically updates no problems. But my problem is on my VM and Burp whenever there are updates, it's a pain. It does not update automatically,...

update commands ?

Hello everyone, what is the complete update commands for Linux to update Burp suite there is just too much convoluted information out there.