Burp Suite User Forum
I am tyring to solve Lab: Exploiting PHP deserialization with a pre-built gadget chain. the php code given in solution is not working giving me an error <?php echo $payload = '{"token":"' ....
How can I learn cyber security in this website
when I test the same API endpoint with 2 different users, one permitted and the other not, I will only see the last request and response and not 2 different requests. If I test with numerous users the same endpoint I will...
I'm using GraphQL API to retrieve Delta using "ScanDelta" object (below) and get new_issue_count, repeated_issue_count etc. Is there a way to break it down and retrieve how many high, medium or low are in each...
When I try to use PostMan to access Burp Suite Enterprise via GraphQL, it either does not get me access to GraphQL or I am not authorized to actually perform anything. - I try to use our "BurpSuite URL"/"My APIKey"....
Hi, I just got 60 day free trial license. New to Burp Suite. My scan failed during the process. I would like to know the reason it failed. Is there any logs I could check on? or where can i find the errors? Its...
Hi Team Please share the below Tax Documents for 2020-21, we would require these documents for you invoice process. 1. No PE 2. TRC 3. Form 10F Regards, Bajrang Rajput
Hey guys, After i vpn network to remote company, lots of time i'm getting error from burp like this "Unknown host: www.google.com". By the way after vpn i have also internet connection because when i remove burp proxy...
Hi Support, I tried using Dashboard to crawl for web pages contenting Javascript and burpsuite was unable to do that. I confirmed it not making any request to the Javascript but creating a simple website with html tag and...
Hi , Brup Installation Issue : When i try to run the above burp version in my PC , I will get the error msg that " Error A JNI error has occurred,please check your installation and try again. my PC Java version...
Getting error as "No valid licence found for download"
In this lab the infected code will look like this: <a href="javascript:fetch('/analytics',...
I am Trying to solve Lab: Exploiting HTTP request smuggling to capture other users' requests.But Always It only contains my own csrf and session cookie . I told you 2 days ago.Please try to solve this lab. i Tried 20...
hello i have problem when install cer in android The client failed to negotiate a TLS connection to fds:443: Received fatal alert: certificate_unknown i try solved with this article...
Hi community, i have a question regarding RAM usage, as far as i know burpsuite will take half of the RAM of the machine to crawl and audit, but i was wondering if is there an option to increase the amount of RAM singed to...
Lab: Exploiting HTTP request smuggling to capture other users' requests i GOt the session cookie and csrf too but i am not able to login session=IaHcO3qG7jv7aC03vFVa60keMi1kYNAG...
I was doing this challenge https://portswigger.net/web-security/deserialization/exploiting/lab-deserialization-arbitrary-object-injection-in-php And as I read the solution (the ";" character at the end was missing in my...
I am Doing Practice on Web cache poisoning to exploit a DOM vulnerability via a cache with strict cacheability criteria Lab But Alert doesnt calling out. i Tried 10 times at regular interval but that didn't work. X-Cache:...
Dear team , I am receiving the same error as mentioned in the following post: "Embedded DB: the embedded database requires file locking which is not supported by the selected data directory burp...
Hi , When i try to open Burpsuite_Pro_v2020.4.1 by clicking on the jar file , it gives me an error : "A JNI error has occurred ,please check your installation and try again " and i have java version "1.8.0_251" installed...
Page 205 of 311
Your source for help and advice on all things Burp-related.