How do I? - Page 229 - Burp Suite User Forum

force logged in status for scan

When I scan my application it is always a bit unclear if the logged in version of the page was scanned too. I suspect that it was not in many cases, as all issues always are discovered on the non-logged-in version of the...

Purchase additional 2 licences

Hello, Please can you quote me the purchase for 2 additional licences for Burp Suite Pro? Kind regards Shahid Chaudhry

Test third party login page

Hi team, In one of our project, we have implemented a login page which calls an external API to load the HTML and validate if user is registered with us or not. for login, we have to enter the user id , password and...

modify jdbc postgres to connect to a new database

Hi Support: I have cloned a new database from the production and would like my test burp enterprise server to use this new database. How do I modify the jdbs postgres on my test server to point to this new test...

I want to integrate QA APIs scanning in burp suite pro on weekly basis

Hi Team, I've Burp Suite Pro license and want to integrate with QA APIs for automatic scanning of APIs and report of vulnerabilities on weekly basis. Could you please share how I can automate the scanning? is there any...

Eliminate False Positives

Dear All, I run a scan for a website for one of my clients and i have found around 80 Reflected XSS vulnerabilities. Although i am not able to reproduce them on the web browser. Are those false positives. Burp reported...

Errors: Request Timeout

While scanning I am getting Communication error in event log. When I went to details of my scan some requests were having status Errors: Request Timeout. When I send that request to repeater I am getting 200 response. At...

MacOS installer claims to not been

When installing on latest MacOS - the following pop up presents no apparent way of installing it. It says: “Burp Suite Professional Installer” can’t be opened because Apple cannot check it for malicious software. This...

Delete multiple tasks scanning

How can I delete multiple tasks in the tab "Tasks" from the Dashboard. I create multiple scanning tasks by API. How can I avoid to delete them manually one by one ? I guess the API could not permit it ... :( ......

How to Search user forum posts

I don't mean to sound ignorant but I've been poking around the portswigger support site and can't find a search field to save my life. I remember it being there before. What's worse, I'm ONLY looking to find out how to...

Burp Suite as Invisible Proxy has trouble with Client Hello containing server_name extension

Hi - Burp Suite generates the following error message after my client sends an HTTPS request with a Client Hello that includes a server_name extension. I read the documentation about Disable Java SNI extension, but it...

How can i access your academy labs

Burpsuite Enterprise: How to edit Site URLs after a site scan has been run?

Hey All; Running Burpsuite Ent - (Trial edition - if that matters) Defined a site - added a single URL of a sub-section of the site. Ran a scan .. and worked perfectly. Now going back to site -> details and...

Proxy tab, Intercept always off?

How do I set the configuration for Proxy>Intercept always off when open-up for my configuration?

Error 400 Bad Request on /burp/proxy/history and /burp/target/sitemap #91

I am using https://github.com/vmware/burp-rest-api to scan and get the issues When Burp's history is populated with some requests to application, the burp-rest-api fails to return data on /burp/proxy/history and...

How do I intercept phone traffic from another network or over a vpn

I am using iPhone to intercept my traffic on local network only, during my tests I am required to use a VPN so that i can access certain contents but i cant use vpn while connected to burpsuite's proxy. I have tried to...

How do I stop attack in the intruder if in the responses find specific result?

after changing the default port. The burp enterprise URL can not be reached.

I have changed the default port and burp automatically starts reboot. The web page is stuck on rebooting. I opened another page to access URL but with no luck. Now I can't access the page with the neither default port or the...

Burpsuite Certificate

Hi - I'm very new to BurpSuite and I'm trying to learn from scratch. At the moment I'm failing at one of the earlier hurdles. I am unable to access the http://www.burp.com/ page to download the burp certificate due to my...

Filter results based on site name from Sitetree in GraphQL API

I'm using GraphQL API (below syntax) to retrieve all site IDs, names, and scopes. How can I filter the result based on site name (for eg. name = "abc") to get site ID and in-scope URLs for that specific site. query Sites...