Burp Suite User Forum

Create new post

External service interaction (DNS & HTTP) Not Replicable on Personal Server

Hello, While reviewing a web application for a client, Burp audits identified both External Service Interaction (DNS) and External Service Interaction (HTTP) in multiple links and parameters. Going after this because...

Last updated: Jan 16, 2019 10:03AM UTC | 3 Agent replies | 3 Community replies | How do I?

Dual License - request to reset the lock

Hello Support Team We have a dual license used by 2 users in the team. In the process of migrating those 2 licenses to different m/c by the same users (due to a project limitation on the prev laptops), one worked, but the...

Last updated: Jan 15, 2019 10:58AM UTC | 1 Agent replies | 0 Community replies | How do I?

Repeater, Update specific parameter

Hey Guys, following story. I currently pentest an application where the server sends me a token in each response which is processed by the AJAX client. This token is later used as parameter in the follow-up request...

Last updated: Jan 15, 2019 10:56AM UTC | 4 Agent replies | 4 Community replies | How do I?

Why is Burp Suite Pro is being blocked?

I have noticed that whenever I try to intercept data from these API endpoints over HTTP that the requests are blocked. Does anyone know why Burp is being blocked? Here's a video demonstration:...

Last updated: Jan 14, 2019 09:09AM UTC | 1 Agent replies | 1 Community replies | How do I?

Transfer License from one laptop to other

Hi, I have just got a new mac machine in lieu of a windows laptop. I'd my Burp Suite license on the windows machine. How do I transfer it to the Mac? Thanks, Nadeem

Last updated: Jan 11, 2019 04:00AM UTC | 2 Agent replies | 1 Community replies | How do I?

Burp Suite unable to intercept android mobile traffic

Hi, I followed all the instructions to configure the mobile with burp suite. The initial browsing seems to be intercepted with burp. However the browser in the mobile fails to go ahead. I am struck with the initial...

Last updated: Jan 10, 2019 09:15AM UTC | 1 Agent replies | 0 Community replies | How do I?

Database failed to initialize

Database failed to initialize during Installation of Burp Enterprise. Can you help me solve this Issue .. .. JDBC URL : xxxxxxxxxxxxxxx:3306/burpenterprise Enter the database user that the Enterprise Server will...

Last updated: Jan 10, 2019 08:31AM UTC | 1 Agent replies | 0 Community replies | How do I?

Multi step scan automatization

Hi, I am testing a multistep form application; I want to scan a parameter (for XSS injection) which is taken as input in step 3 and printed out to screen at step 5. Does burp can understand it has just injected something...

Last updated: Jan 09, 2019 02:55PM UTC | 1 Agent replies | 0 Community replies | How do I?

How do I configure the scan using the Generic CI Driver?

Team, I am using the Burp Enterprise edition and need assistance with using the Burp generic CI driver. Can you help me with the syntax to initiate the new scan in the CI using Generic CI driver? I have the burp...

Last updated: Jan 09, 2019 02:44PM UTC | 1 Agent replies | 0 Community replies | How do I?

Burp2.0 : Where can I see the scan queue items?

In the new Burp 2 pro, I can start crawling and auditing tasks, but I cannot see the items scanned or in the queue. (Unless an audit, event log is generated). In the dashboard, I can see details for my task, including the...

Last updated: Jan 08, 2019 02:26PM UTC | 2 Agent replies | 1 Community replies | How do I?

Unknown_ca error, missing detailw

Hello, I'm getting an unknown_ca error in the Event log. Sadly I can't find a way to know _which_ host is causing this issue. Is there any extra detail?

Last updated: Jan 08, 2019 10:53AM UTC | 1 Agent replies | 0 Community replies | How do I?

bypass business validation

in chrome there addon that can send a lot of request as same time, is there any way to do that in burp, the purpose is to bypass business validation, for example App must not allow to register more than one user by same ID...

Last updated: Jan 08, 2019 05:31AM UTC | 2 Agent replies | 2 Community replies | How do I?

SHA1 certificate signatures

It looks like up to about v1.6 SHA1 was used exclusively for certificates, then the switch to SHA256 happened. Is there a way to restore the old SHA1 behavior? This would be quite helpful for a current project. I looked...

Last updated: Jan 07, 2019 01:02PM UTC | 2 Agent replies | 3 Community replies | How do I?

Crawl

Hello tell me please if im setup a huge site to crawl with crawl limit 300 minutes, it scan first unauthenticated and tell me please after 300 min it stop the scan ? or it go to authenticated scan and after 300 min up it...

Last updated: Jan 07, 2019 08:21AM UTC | 1 Agent replies | 0 Community replies | How do I?

Error when using carbonator

I get below error when using carbonator Initiating Carbonator Against: http://day191-181101-sql-274h.qa /rest/connect/ burp.ysg@1d01dc2f Sending new URL to Vulnerability Scanner: URL # 1 Sending new URL to...

Last updated: Jan 03, 2019 08:01AM UTC | 3 Agent replies | 2 Community replies | How do I?

Install two burpsuite in the same linux box: Burp Pro and Free Ed

Dear all, Does anyone know, how to install two burpsuite package in the same linux box which are Burp Pro and Free Ed. The pro version I need in this box because I already had one license, while the Free Ed is used for my...

Last updated: Jan 02, 2019 08:09AM UTC | 1 Agent replies | 0 Community replies | How do I?

VPN Connection Application Configuring with Burp

Hi, I have a mobile test app which is only accessible over the VPN. I have connected my system and mobile over the VPN via Cisco Any connect .Even I am configuring the proxy (the system ip to my mobile wifi settings in...

Last updated: Dec 28, 2018 11:05AM UTC | 1 Agent replies | 1 Community replies | How do I?

Cross-site scripting (reflected)

Hi, I'm surveying my website now I see via Burp suite a message Cross-site scripting (reflected) HIGH on two files namely a css and a js file. My question is is it possible to open a reverse shell using these...

Last updated: Dec 28, 2018 10:52AM UTC | 1 Agent replies | 0 Community replies | How do I?

ffffffffffffffffssss

sfffffffffffffffffffffffffffffffff

Last updated: Dec 27, 2018 06:40AM UTC | 0 Agent replies | 0 Community replies | How do I?

Passive Scanning in Burp Suite Enterprise Edition

Hello, Is Passive Scanning offered in Burp Suite Enterprise Edition like it is present in Professional Edition? If yes, could you please help in letting me know about the configuration which would help ? Thank...

Last updated: Dec 27, 2018 03:16AM UTC | 0 Agent replies | 1 Community replies | How do I?

Page 274 of 321

Burp Suite Support Center

Your source for help and advice on all things Burp-related.

Burp Suite Support Center image