How do I? - Page 156 - Burp Suite User Forum

i am unable to doenlaod bursuite professional

when i click on the downlaod button no file is getting downloaded

Exploiting HTTP request smuggling to perform web cache deception NOT WORKING

I'm trying to solve this challenge with no success. I've typed this code on "Repeater" and send it innumerable times but I can't get a 401 response. POST / HTTP/1.1 Host:...

GraphQL request in python

Hi, I can't make a request to the BurpSuite Enterprise GraphQL API in python, I always get a 401 error, unauthorized access. The user is registered and the API Key is correct. Any ideas? -------------- import...

Burp suite not working

Hi, I'm using parrot OS on my laptop. I tried once to work with burp and got failed.When I opened the app, Java run time error popped up. couldn't remember exactly."This version is not tested for java 11.0.20" something...

Frequent Update Installs of Burp Suite Pro in Controlled Enterprise?

It appears there are very frequent updates to Burp Suite (specifically referencing Pro edition). How are these frequent updates addressed/managed in a typical enterprise environment where the user does not have local admin...

Web cache poisoning with multiple headers - Not working.

The lab does not seem to be working for me. On Kali Linux when I hit send on the request in repeater it stays in waiting state for minutes and after that just displays done with no response. On Windows - the get request,...

Create virtual/emulated environment for testing mobile apps

Does PortSwigger recommend any emulation/virtualization platforms for testing mobile apps? I've got to test iOS and Android versions, and have only ever worked with physical devices. This job requires virtual devices, so I'm...

how do i activate burp suite professional

recently i downloaded burp suite professional and installed. But my trial activation code do not working. Error says not valid for this version of Burp. Help me please

Burp memory usage in intruder

Is there any way to improve the memory usage in burp intruder at more than 10M requests? Or force the results to be saved on HDD instead of ram while intrudet is running. After doing about 10M requests in intruder aprox...

License management after device wipe

Hi, We recently bought 4x BurpSuite Pro license. We want to wipe the device after test and install clean install of OS and BurpSuite after periodically. Can you please help me understand what this means for us to manage...

Embedded browser

Hello there, I have a problem when starting the proxy embedded browser. I get this error message "net.portswigger.devtools.client.ah: Unable to start browser" I'm using Kali Linux, user not root Thanks

Wow Where do I start as a beginner? On Web Security Academy??? Help plz

I'm a little overwhelmed with the Academy page. Is there an order to follow and build on? Where do I start as a beginner? On Web Security Academy??? Help plz

How to prevent scanner from accessing out of scope items?

When I set up a scan with a defined scope, the scanner is accessing resources that are out of scope. Simple example workflow: 1. Start a new temporary project 2. Add "https://example.com" to the target scope 3....

Would you please change our company and contact information?

I would like to politely request the update/change of our company name because innogy SE has been migrated/merged to the following company since the beginning of 2021: “E.ON Digital Technology GmbH” I have already...

Client certificate using Internet Explorer cert store?

Greetings, Is it possible for Burp to use the Windows (IE) certificate store? I've got a client whose process requires client certificates, but the IE+applet procedure stores it directly. Trying to export the result for...

Cross-site scripting : reflected --> justification

Hi Team, Need some help to suppress false positives for XSS as below. Is there a way where I can get an justification, because it just shows "File not found" exception in the response. How can we do this...

Vulnerable Javascript dependency : dataTable.min.js

Hi Team, We scanned our application in burp suite and we got issues in vulnerable JavaScript dependency for dataTables.min.js. It gave remedies to migrate the latest dataTables version. i.e. We detected jquery version...

Burp Suite Scanner - SSRF detection

Hi, With the recent Capital One breach, the SSRF vulnerability has been highlighted as a potential cause/method of the breach. My question is, does either the Burp Suite Pro or Enterprise version automatically detect...

Always getting Errors:request time out in audit status And Active phases alwasy shows finished with error

Burp Browser Error on Kali ( radeon nitro+ rx 5700 xt )

Hi Burp, I am facing trouble on rendering page on -Kali ( Linux kali 5.10.0-kali8-amd64 #1 SMP Debian 5.10.40-1kali1 (2021-05-31) x86_64 GNU/Linux ) -AMD GPU ( radeon nitro+ rx 5700 xt ) -java 16.0.2 2021-07-20 I...