How do I? - Page 189 - Burp Suite User Forum

Remaining time

Hi, We are were multiple tests using the scanner and we found that every time the scan reaches 95%~97% the requests frequency goes down to 0 for about 20mins (rarely we see 2-3 requests) and the estimated remaining time...

Can't install Burpsuite Community Edition on Kali Linux

Hello, I am trying to install Burpsuite Community Edition but it won't let me. My set up is - Kali Linux 2020 vbox i386 running on Oracle VM VirtualBox Manager on macOS Catalina 10.15.7 I have downloaded the .jar...

how do I put credentials for MFA

Hello, The site we tried to crawl and audit is MFA enabled. How does that work? Thanks, Fusheng

Excluding an endpoint for specific type of scan attack

Is it possible to exclude a specific endpoint to be excluded for only speicific type of scan attack test? E.g. when I perform scan for URL http://foo.company.com, we find two issues at /myWebApp endpoint. Issue-A -...

How do i deactivate burp (single user license) license from one machine and activate in another

Hi, Unfortunatley i have installed and activated burp license in a wrong machine. I need to deactivate this license (which no longer using in this machine) and activate i another machine. Please suggest me the steps to...

Installing in Linux based distros

Which Linux distribution is the best for installing Burp Suite?

Assistance With Private Collaborator Setup

Hello, I have been trying to set up a private collaborator server using a domain purchased at Amazon Route 53 that points to a Digital Ocean Droplet. I have changed the nameservers in Route 53 to point to DigitalOcean...

HTTP request smuggling

how to determine the content length in http request smuggling it is varied in every request POST / HTTP/1.1 Host: vulnerable-website.com Transfer-Encoding: chunked Content-Length: 4 (here) 1 A X POST /...

Burp is saying Activation Failed because no more activations for this license allowed.

I only have Burp Pro installed on a single computer. It was working just fine yesterday when I was using it. Please help reset whatever needs to be reset. I need this installed on my PC. Our licenses are valid and no one...

Please add contact to manage license

Please add new contact to manage our Portswigger license: Contact: Yulia Gillen <ygillen@bloomberg.net> Tel. 212-617-1220

How do i export cookies from cookie jar

Hi Team, Cookies in the cookie jar are not saved with the project. Is there anyway to export those cookies and import it in some other instance of burp. Or can i save those cookies somehow ? Regards, Niraj

Agent's Health status

Hello, I'm struggling with agents for scanning a site. I have the trial period of BS Enterprise and during some proof of concepts everything worked fine, but now that I'm preparing some things for a presentation (like...

Cannot connect to a website called "hackazon.samsclass.info" tls connection erro

I have been trying to connect to a website and I have setup proxy in firefox. I have made sure the listener is active and the details are right. I have turned intercept off, but it displays connection failed in the browser...

Browser says no Internet connection after Burp closed (community edition)

I'm very new to security and using Burp so apologies if this is a very basic question. After configuring Burp as the proxy server for my browser and setting up the certificate, I find that, when I close Burp and try to visit...

Lab: 2FA broken logic

I was struggling with this lab so I decided to have a look at the solution. I see it mentions in the first step: "With Burp running, log in to your own account and investigate the 2FA verification process. Notice that in the...

intercepting request response

Hi, as per https://forum.portswigger.net/thread/how-to-modify-https-response-a7bc1b59, can you help me share a screenshot to registered email ID for how can i modify the request responses.

How to migrate burpsuite embedded database to mariadb

I follow the next link: https://portswigger.net/burp/documentation/enterprise/administration-tasks/migrating-db#preparing-for-migration But i have the next error: Error: Could not find or load main class...

how to crawl domains with captcha or select box(terms & conditions)

When we have some domains with captcha & terms conditions checkbox enabled on login page. When we are trying to crawl and audit the application in burp EE it was not crawled all the application. Do we need to add any extra...

Clean-up old .jar files

Is it safe to remove old jar files from /usr/local/burpsuite_enterprise/burp?

BurpSuite Update stuck on "Checking for Updates" (current version 2.1.06)

I'm trying to update from a BurpSuite Pro version that's about a year old (2.1.06), when I click on Update, I get the Checking for Updates pop up but it seems to stay on that screen for hours. I do have the portswigger URL...