Burp Suite User Forum

Create new post

Unable to open saved burp suite log file

I tried to open a saved burp project, but it says the project the file is corrupted, I have to repair it. After repair I was able to open the file but it appears to be an empty file.

Last updated: Jul 12, 2024 12:52PM UTC | 1 Agent replies | 0 Community replies | How do I?

How to View Response in Repeater?

I took a short course on using Burp and wanted to play around with it some more a few days later. However, I noticed that when I capture an HTTP response and try to send it to Repeater, I can only see the request there. I...

Last updated: Jul 12, 2024 09:49AM UTC | 1 Agent replies | 0 Community replies | How do I?

Clickjacking Labs First 3 Lab Not Solved Problem

Even tough my payload is working on view exploit when I try to deliver it to victim it never solves the lab. Yes, I change the email before I deliver to victim. Check this Payload for Lab: Clickjacking with a frame buster...

Last updated: Jul 12, 2024 09:26AM UTC | 1 Agent replies | 0 Community replies | How do I?

JWT authentication bypass via algorithm confusion with no exposed key

How HARD, I try.. I am not able to resolve this lab... even after using multiple methods to solve this lab.... Cookie part is working.... Symmetric Key which is being created using .PEM public key which is not...

Last updated: Jul 11, 2024 12:35PM UTC | 2 Agent replies | 3 Community replies | How do I?

Request Manipulation

Hello Team, I have one general query. Changing a request query parameter to a different value and then getting a different result. As long as the data is something user should have access to then there isn't a problem...

Last updated: Jul 11, 2024 10:46AM UTC | 2 Agent replies | 1 Community replies | How do I?

repeater

I've seen on yt videos that if u sent a request in repeater then it will solve the lab. But when i sent a request in repeater it isn't showing the lab is solved

Last updated: Jul 11, 2024 08:40AM UTC | 2 Agent replies | 2 Community replies | How do I?

Unable to open Burp Browser

Iam unable to open Burp Browser from the burp suite community edition, as iam facing the error as Burp Browser Error, java.io.IOException: cannot run program and it is saying that system cannot find the file specified.

Last updated: Jul 11, 2024 07:26AM UTC | 3 Agent replies | 2 Community replies | How do I?

Lab #5: CSRF where token is tied to non-session cookie & Lab #6: CSRF where token is duplicated in cookie issues

Hello, I have been working on the CSRF Labs and I'm having problem with the following labs: - Lab #5: CSRF where token is tied to non-session cookie - Lab #6: CSRF where token is duplicated in cookie issues For Lab...

Last updated: Jul 10, 2024 09:20PM UTC | 3 Agent replies | 7 Community replies | How do I?

Lab: Bypassing access controls via HTTP/2 request tunnelling - Not getting the desired response.

Hi All, I am following the solution mentioned in the lab solution. In the last step when I change the :path to /admin, I get the following response, "HTTP/2 500 Internal Server Error Content-Type: text/html;...

Last updated: Jul 10, 2024 05:12PM UTC | 8 Agent replies | 10 Community replies | How do I?

Burpsuite Enterprise: False Positive findings disappear from scan results

Hi, I'm not sure if this is a bug or a feature but I'm observing the following behaviour when using the Burpsuite Enterprise scanner: When a scan finishes, in the Issues section contains the vulnerabilities found by the...

Last updated: Jul 10, 2024 04:01PM UTC | 1 Agent replies | 1 Community replies | How do I?

Renewal of Burp Suite Professional license

Hi Support, I would like to know how much (in USD) does it cost to renew my current Burp Suite Pro license?

Last updated: Jul 10, 2024 12:36PM UTC | 1 Agent replies | 1 Community replies | How do I?

Burp Audit Not able to check if the session is invalid

I understand that Burp automatically checks if the session is invalid and restarts the login process accordingly. However, is there a way a user can change what would be considered "invalid session". The application I am...

Last updated: Jul 10, 2024 11:55AM UTC | 1 Agent replies | 0 Community replies | How do I?

Unable to access labs - Server Error

I have been trying to access portswigger CSRF lab "SameSite Lax bypass via cookie refresh" since yesterday but, it keeps throwing 504 gateway timeout - "the server didn't respond in time".

Last updated: Jul 10, 2024 11:02AM UTC | 4 Agent replies | 4 Community replies | How do I?

Can not activate Burp Suite Pro anymore

Hi Supporters, I have a few PC installed Burp Suite and some of them got reinstalled recently Today I do activate Burp Pro and I encounter a message "No more activations allowed for this license". Could you please help...

Last updated: Jul 10, 2024 08:36AM UTC | 1 Agent replies | 0 Community replies | How do I?

Exploit Server

good day. how can I set up a test exploit server or if there is any option online that can be used to test the http atacks part. Cheers...

Last updated: Jul 10, 2024 08:22AM UTC | 11 Agent replies | 18 Community replies | How do I?

License again!

My license expired in just two days! It's curious because I didn't use Burp Pro until now. Now, I can't use it anymore because there's no valid license for me. And I paid for it! Congratulations! I believe I still had more...

Last updated: Jul 10, 2024 06:52AM UTC | 1 Agent replies | 1 Community replies | How do I?

Scanning error

As i tried to scan the URL scan got aborted with following error 1654690424690 Info Task 11 Paused due to error: Could not connect to any seed URLs. 1654690423985 Info Task 11 Crawl started. 1654690242653 Debug Task...

Last updated: Jul 09, 2024 03:16PM UTC | 6 Agent replies | 6 Community replies | How do I?

Scan errors in Burp

I ran an active scan using Burp. The scan was abandoned due to multiple errors. I would like view the error logs so that I could figure out what went wrong. How do I check these errors?

Last updated: Jul 09, 2024 01:32PM UTC | 4 Agent replies | 3 Community replies | How do I?

Forward findings to Security Hub or Defect Dojo

Hi, Can BurpSuite Enterprise Edition forward findings to Security Hub or Defect Dojo after it finish to run the scan in a CICD pipeline?

Last updated: Jul 09, 2024 01:30PM UTC | 1 Agent replies | 0 Community replies | How do I?

How to Change DB username and password after installation?

I am using Burp Enterprise. I've installed it in silent mode with a response.varfile which contains the db username and password. I have an external database server whose password I would like to change after burp is...

Last updated: Jul 09, 2024 08:57AM UTC | 2 Agent replies | 1 Community replies | How do I?

Page 2 of 320

Burp Suite Support Center

Your source for help and advice on all things Burp-related.

Burp Suite Support Center image