Research Academy
My account Customers About Blog Careers Legal Contact Resellers
The Burp Suite User Forum was discontinued on the 1st November 2024.

Burp Suite User Forum

For support requests, go to the Support Center. To discuss with other Burp users, head to our Discord page.

SUPPORT CENTER DISCORD

Code explanation for Lab: Reflected XSS protected by very strict CSP, with dangling markup attack

Hi, I have got a quick question about the solution of the lab mentioned in the subject. I understand the context and the approach, I have come pretty close to the solution myself but just could not make it work. The...

Last updated: Apr 13, 2021 09:02AM UTC | 1 Agent replies | 0 Community replies | How do I?

Xss Lab are not marked as solved after solving

Xss labs are not marked as solved even after multiple times of solving it

Last updated: Apr 13, 2021 09:00AM UTC | 1 Agent replies | 0 Community replies | How do I?

disable TLS 1.0 and 1.1

How can I disable TLS 1.0 and 1.1 on Burp server it self ?

Last updated: Apr 13, 2021 08:06AM UTC | 1 Agent replies | 0 Community replies | How do I?

how to escape the dot character "." in Intruder

Is there anyway I can escape the dot character "." in Intruder? I'm doing an intruder attack with the email as parameter 1, which is "J12934@juice-sh.op", I need to escape the dot in the email address, so I entered ...

Last updated: Apr 12, 2021 01:30PM UTC | 1 Agent replies | 0 Community replies | How do I?

Lab: Arbitrary object injection in PHP

Don't know why i keep running into this fatal error when trying to solve all the Insecure deserialization labs... This is the error i keep running into despite encoding the section cookie twice before pasting the value to a...

Last updated: Apr 12, 2021 09:19AM UTC | 1 Agent replies | 0 Community replies | How do I?

Use Set-Cookie received as Response during Cluster Bomb

I am running a simple Cluster Bomb. Every Request sent generates a "Set-Cookie:" with a new JSESSIONID to be changed. How do I include that with every new request using Burp Pro?? Suggestions? There is a regex option...

Last updated: Apr 12, 2021 09:09AM UTC | 1 Agent replies | 0 Community replies | How do I?

Scan API with Burp Suite Pro v2021.3.1

Hi, I saw this post (https://portswigger.net/blog/api-scanning-with-burp-suite) where it mentioned Burp Suite Pro and Enterprise is now able to read the OpenAPI file, however I'm not sure where I can import the OpenAPI...

Last updated: Apr 12, 2021 08:47AM UTC | 1 Agent replies | 0 Community replies | How do I?

Capture TCP traffic

Hello, I wanted to know if it was possible with Burpsuit to capture TCP traffic? Thanks in advance

Last updated: Apr 12, 2021 08:43AM UTC | 1 Agent replies | 0 Community replies | How do I?

Intercept a POST request, but a parameter is missing in HTTP response

I was intercepted a request from Protonmail (https://protonmail.com). But in the HTTP response password parameter is missing. I forget the password of my protonmail account and I have add recovery email in my protonmail...

Last updated: Apr 12, 2021 08:31AM UTC | 1 Agent replies | 0 Community replies | How do I?

buy burp professional version

I am trying to buy a professional version. However, it needs both a company email and company name. I am unemployed and I need to buy one for my personal training. What should I do? Best, Betty

Last updated: Apr 12, 2021 07:47AM UTC | 1 Agent replies | 0 Community replies | How do I?

GET request capture by interceptor not showing parameters.

Hi,I'm practicing brute force attack in DVWA (Windows and Firefox browser) when my burp suite intercepter capture GET request it not showing me parameters like username and password... Please help!!

Last updated: Apr 10, 2021 12:47PM UTC | 1 Agent replies | 2 Community replies | How do I?

Intercept a POST request, but a parameter is missing in HTTP response

I was intercepted a request from Protonmail (https://protonmail.com). But in the HTTP response password parameter is missing. I forget the password of my protonmail account and I have add recovery email in my protonmail...

Last updated: Apr 09, 2021 08:06PM UTC | 0 Agent replies | 0 Community replies | How do I?

Providing a local OpenAPI/Swagger file during scanning

Dear Burp support, According to [1], the scanner is able to parse OpenAPI documents it encounters. However, the API that I want to scan does not provide a documentation on any endpoints, but I do have a local OpenAPI...

Last updated: Apr 09, 2021 02:59PM UTC | 1 Agent replies | 0 Community replies | How do I?

Unable to activate the license

Dear team, Post login with Enterprise credentials, no window has been prompted to activate license. Referred to the below URL. Please assist here. ...

Last updated: Apr 09, 2021 09:52AM UTC | 1 Agent replies | 0 Community replies | How do I?

Intercept mobile device network using BurpSuitePro

Hi, I have recently setup a BurpSuite on MacBook running on MacOS 11.2.3 (Big Sur) and would wish to intercept the network traffic on mobile devices (Android and iOS). I have followed the setup listed...

Last updated: Apr 09, 2021 09:43AM UTC | 2 Agent replies | 1 Community replies | How do I?

Proxy for Agent in BurpSuite Enterprise

Hi... Is it possible in BurpSuite Enterprise edition use proxies when my agents begin to scan web-sites? Thx...

Last updated: Apr 09, 2021 09:24AM UTC | 1 Agent replies | 0 Community replies | How do I?

Burp Suite Professional. Proxy Listeners not working

Hi Proxy Listeners section in my Interface (127.0.0.1:8080), Running Check Box is not checked, I tried to click the CheckBox but it shows that another app is using the port. However. I did a netstat -ano and no other app...

Last updated: Apr 09, 2021 09:07AM UTC | 1 Agent replies | 0 Community replies | How do I?

i dont no which is my lab id

please say where is my postwigger webacadamey lab id

Last updated: Apr 08, 2021 03:05PM UTC | 2 Agent replies | 2 Community replies | How do I?

Need to export burp states in mass

I have over several TBs of different burp states i need to analyze the raw data. Is there a command line switch or extension that can i export all these states to XML. I know i can this through the UI but I need to script...

Last updated: Apr 08, 2021 02:40PM UTC | 1 Agent replies | 0 Community replies | How do I?

DNS config for private Burp Collaborator

Hello. I cant get undersatnd. If I have a existing DNS servers into my infrastructure - I must use it for configuration private instance of Burp Collaborator, right? I dont need create some special DNS for...

Last updated: Apr 08, 2021 12:12PM UTC | 2 Agent replies | 1 Community replies | How do I?

180 181
182
183 184

Page 182 of 332

Burp Suite Support Center

Your source for help and advice on all things Burp-related.

Burp Suite Support Center image