Burp Suite User Forum

Login to post

Active Scan issues in BURP REST API

Hi Team, I tried scanning a web application using Burp. I have used: Audit coverage - thorough Configuration. While entering the scope URLs, in the Advanced Scope category, I have put some URLs in the "include URL...

Last updated: Nov 23, 2022 11:24AM UTC | 6 Agent replies | 4 Community replies | How do I?

Burp Certification Exam Voucher

Hello team, I bought the voucher back in Nov 2021 and checking now when accessing Examity, I found that the Exam Windows is until August 2023. How could I validate the right exam deadline for my voucher? I would like...

Last updated: Nov 23, 2022 10:26AM UTC | 1 Agent replies | 0 Community replies | How do I?

HTTP request smuggling to deliver reflected XSS - but there is no XSS

Hey! In the lab "Exploiting HTTP request smuggling to deliver reflected XSS", we are told that there is a reflect XSS in the userAgent header. Which I can't seem to find? The value of of the userAgent header is never...

Last updated: Nov 23, 2022 10:00AM UTC | 1 Agent replies | 0 Community replies | How do I?

Issue with Lab: Web shell upload via path traversal

Hello! I did all steps and got via link /files/exploit.php data in strange format Can't understand where is secret string there ����JFIF��BExifMM*�i@@��C    ...

Last updated: Nov 22, 2022 09:39PM UTC | 2 Agent replies | 5 Community replies | How do I?

Generate report with Burp API have no option to include HTML requests/responses

Hi, I have a custom extender (headless mode execution) for running active scan and generate HTML report that include HTTP requests/responses. In version 2022.9.6, the generateScanReport no longer default to include the...

Last updated: Nov 22, 2022 01:41PM UTC | 1 Agent replies | 0 Community replies | How do I?

proxy is not working.

Hello. I want to view a mobile app through BurpSuite proxy. I have done this before. I have configured everything correctly. When I access other applications I can see the requests without any problem. But when I open and...

Last updated: Nov 22, 2022 01:40PM UTC | 1 Agent replies | 0 Community replies | How do I?

No more activations allowed for this license.

Hi support, colleagues who were recently hired are unable to use the licenses that were installed on the computers of colleagues who left. Would it be possible to reset the number of active licenses so that they can also...

Last updated: Nov 22, 2022 11:57AM UTC | 1 Agent replies | 0 Community replies | How do I?

Kindly refresh the Burp License

Hello, kindly refresh the Burp License, as the machine on which we were to use Burp has changed

Last updated: Nov 22, 2022 10:56AM UTC | 1 Agent replies | 0 Community replies | How do I?

Reset all my labs and progress

How i resrt all my labs and progress to solve them again ?

Last updated: Nov 22, 2022 09:03AM UTC | 2 Agent replies | 1 Community replies | How do I?

Can't use license anymore

Hi, support I have problems with using the license since I used a different device. could you please help me? Thank you.

Last updated: Nov 22, 2022 08:30AM UTC | 1 Agent replies | 0 Community replies | How do I?

how to exploit this Data is read from window.location.hash and passed to $() via the following statements:

var sPageURL = window.location.hash.substring(1); var sURLVariables = sPageURL.split('&'); var sParameterName = sURLVariables[i].split('='); $(sParameterName[1].split(',')).each(function(){...

Last updated: Nov 22, 2022 07:13AM UTC | 2 Agent replies | 1 Community replies | How do I?

Make extension operate on a specific request not all of them.

I know that the processHttpMessage interface makes my code execute at every request and response passed, how do i make my extension run at a specific request (or specific multiple ones), like lets say i can select a few...

Last updated: Nov 21, 2022 05:00PM UTC | 1 Agent replies | 1 Community replies | How do I?

application security testing

What tool is recommended for application security testing? <a href="https://codoseo.net/Web_design/website-design-order">سفارش طراحی سایت</a>

Last updated: Nov 21, 2022 03:12PM UTC | 1 Agent replies | 0 Community replies | How do I?

Burp Suite Professional

What services can be obtained from Burp Suite Professional؟ https://codoseo.net/Seo

Last updated: Nov 21, 2022 01:16PM UTC | 1 Agent replies | 0 Community replies | How do I?

You’ve been blocked for security reasons cloudflare

when i on burp suite using FOXY PROXY exxtension and reload the website this error is show You’ve been blocked for security reasons If you believe this is a mistake, please contact the website owner and include the...

Last updated: Nov 21, 2022 12:10PM UTC | 3 Agent replies | 3 Community replies | How do I?

Lab: Combining web cache poisoning vulnerabilities isn't solved

Hi I make The same steps of the answer to solve the lab but the lab isn't solved I tried from another machine & I asked a friend of mine to try solve it with the answer steps but the lab isn't solved can you check it...

Last updated: Nov 21, 2022 09:30AM UTC | 2 Agent replies | 1 Community replies | How do I?

No more activations allowed for this license

Hi!! Unfortunately, I have had to reinstall my Laptop on several occasions and now when I try to install burp suite, I get the error "No more activations allowed for this license" Could you please help...

Last updated: Nov 21, 2022 07:10AM UTC | 1 Agent replies | 0 Community replies | How do I?

Lab: Username enumeration via account lock

Hi everyone, I'm using Burpsuite Community Edition and can't solve this lab. I think it is because the CE is too slow and therefor doesn't trigger the response looked for. The site already has reset itself after each round...

Last updated: Nov 19, 2022 06:09PM UTC | 2 Agent replies | 2 Community replies | How do I?

Execute system commands from burp extension

How do i execute system commands on linux from a burp extension ? tried the following from the Jython docs and it didn't work nc = "echo something | tee -a /path/to/file" ...

Last updated: Nov 18, 2022 04:22PM UTC | 1 Agent replies | 1 Community replies | How do I?

Crawl Website completely

Hi, I have Burp Suite Professional v2022.9.6 I am trying to crawl and audit my website (using .Net Framework 4.8) Burp is not able to crawl the following 1. dropdowns inside navbars 2. iframes inside webpages 3....

Last updated: Nov 18, 2022 12:17PM UTC | 2 Agent replies | 1 Community replies | How do I?

Page 2 of 255

Burp Suite Support Center

Your source for help and advice on all things Burp-related.

Burp Suite Support Center image