How do I? - Page 271 - Burp Suite User Forum

Intercept odd behavior

Hi Support. Seems that while Intercept works, I cannot see anything in "Raw" data tab, but I do see data in "Headers" and "Hex". If I try to forward to Repeater, same thing. Nothing is in HTTP History either. I have...

Restrict interception only on a particular app (Android)

Hi there, I'm new with Burp and want to intercept http & https requests only from specific android apps for testing purposes. I configured burp suite community edition (v.1.7.36) for proxy usage (I add an proxy listener as...

Spider Problem

Hello.Sometimes when I using Spider I logout in web application and return http response 500.I need to login again and start the spider.Can not this be automatic ?When i'm logout web application and spider is login again ?

Macros with Dynamic URL

How can this be done with BURP? I can get the macro working if the URLs are always the same but I'm stuck now that my POST requires a dynamic URL. Trying to do this with Macro/Extension: GET - www.domain.com where a...

How do I sniff packets of a http game?

I have a game, and I converted it’s commincation with the server from https to http so that the endpoint would be http instead. Now all the packets are decrypted and no longer protected. How do I sniff the game now,...

an error when install burp_infiltrator_java.jar on Linux

when I try to install burp_infiltrator_java.jar on linux, a error encountered, I would to share it: Exception in thread "main" java.awt.AWTError: Can't connect to X11 window server using ':0' as the value of the DISPLAY...

Unable to connect to internet with 127.0.0.1 proxy

Burp update HTTP header

Hi, I'm wondering if there is a simple way to update the HTTP header. Basically when a specific request is made a new token is sent in the response. How can I take that value from the response and put it into the header...

Static and Dynamic scan of .NET MVC web application coding in development environment

Hi, I am planning to buy two licenses of Burp Professional. Does Burp professional license includes all the modules/functionalities including static/dynamic scanning of developers actual coding. If not what should I need to...

PLS HELP

How do i use it pls send a video for understanding pls tell..... i have a latest laptop...SO PLS HELP....BY GIVING TRAINING

Spider request queue not stopping.

Hi, I have stopped the spider from running and cleared the queues. This was roughly 30 minutes ago. However, more and more requests are still getting queued. Why is this happening and how do I stop it?

Reroute Domain on Game Client

Hello, i’m working on a game called Marvel Contest of Champions, and i can intercept its proxy with Burp Suite and it gives me the different cloud servers that the data is stored on(mcoc-1800-fbaem.sparxcdn.net) and many...

Scanner: Ignore errors and continue

I am testing a target which intentionally resets the TCP connection if it receives certain kinds of invalid inputs. When performing an active scan, Burp will only perform so many requests before it aborts and reports...

How do I download a list of payloads

Where can I get a list of payloads?

export spider traffic

After spider the host, how can I export the traffic of spider to other tools ?

Authentication Failure from xyx.com

Hi All, Need urgent help, We have a financial Application(xyz) and we are running burp suite for that. And After capturing the target site. i.e.. Login to application >> Navigating entire application links and navigation...

Scanning abandoned due to too many errors

Hi, I am trying to scan and almost all the requests are getting abandoned due to errors and when checked in Alerts tabs it says "Timeout in transmission from xyz.com" What is missing here?

Repeat spidering with corrected authentication

I spidered a site, and many of the pages returned 401s. I've since fixed the project authentication settings, and I want to re-spider the pages that returned 401s. If I select the target and send it to spider, nothing...

Burp's CA certificate was blocked from server

I'm having a problem creating an api for my application https://imgur.com/a/gFxGTZQ - In the above image I used the same request for burp suite and post man. Post man working and burp suite is not - when i use burp...

Testing web services

Is burp capable of testing web services - can all test cases defined in OWASP cheat sheet be tested ? https://www.owasp.org/index.php/Web_Service_Security_Testing_Cheat_Sheet