Burp Suite User Forum

Create new post

cannot get burp proxy to work with firefox

not sure what is going wrong with this. I have all settings correct. In burp i have the interface set to 127.0.0.1 and port set as 8080 (I have tried other ports as well). In firefox I Have the proxy set to...

Last updated: May 29, 2018 07:19AM UTC | 2 Agent replies | 2 Community replies | How do I?

How do I manual add a vulnerability

Using the intruder functionality, i saw the application was vulnerable to a XSS (with a custom payload). Active/Passive Scan doesn't find it. So I have a hit but how can i flag this payload/result with this params as a...

Last updated: May 23, 2018 03:02PM UTC | 7 Agent replies | 7 Community replies | How do I?

Unable to intercept and edit requests and responses in Android Application.

Hello, Am testing an e-commerce application on my Xiaomi android mobile running on 4.4.4. I'm able to see the requests and responses but before I edit and change them, they reach their destination. i.e when i try to edit...

Last updated: May 23, 2018 11:42AM UTC | 7 Agent replies | 10 Community replies | How do I?

Burp Spider deleted controls in a SalesForce application

Hi - We recently spidered a Salesforce application and this resulted to changes in the application such as: Deleted custom field Changed the UI Skin Changed Enable Drag-and-Drop Editing on Calendar Views from on...

Last updated: May 18, 2018 07:23AM UTC | 1 Agent replies | 0 Community replies | How do I?

Purchased Burp Suite but have not received License

I purchased Burp Suite on May 10 for $349. It has been 5 days and I have still not received my License. Burp Suite is terrible and no one every responds to emails.

Last updated: May 15, 2018 07:03PM UTC | 0 Agent replies | 0 Community replies | How do I?

Import Client SSL Certificates (.CER files)

I was trying to load a .CER file into the Client SSL section for the proxy server, however it says it requires a password. Is there any way around this? I tried the Openssl method of setting a custom password except there...

Last updated: May 15, 2018 01:36PM UTC | 2 Agent replies | 1 Community replies | How do I?

Automate Burp License Activation

We are working on a project, where we wanted to deploy Burp on a container in a ci/cd. Is there a way to automate the Burp License Activation process programmatically eitherway in a headless mode ? Has anyone given it...

Last updated: May 15, 2018 08:27AM UTC | 1 Agent replies | 0 Community replies | How do I?

certificate_unknown

I have an iOS app I'm testing on an iPhone 5c running iOS 10.3.3. The Burp certificate is correctly installed on the device as I'm able to see https web requests and https app requests from other applications within Burp...

Last updated: May 11, 2018 03:55PM UTC | 1 Agent replies | 0 Community replies | How do I?

How do i prevent cookie ID injections in the request parameter?

I have a case where we recorded a bunch of URL's and re-scanning them. During the re-scan the session expired. So to create an active session i have created a session handling rule to trigger login and create a new Session...

Last updated: May 11, 2018 01:04PM UTC | 1 Agent replies | 0 Community replies | How do I?

Burp/run analytics

I would like to know how to run analytics

Last updated: May 11, 2018 09:02AM UTC | 1 Agent replies | 0 Community replies | How do I?

Fuzz APIs ?

Do burp is having any extension which can help in Pen test of APIs ? Like another tool API fuzzer ? along with Intruder what else can be used to do API pen test automatically ?

Last updated: May 10, 2018 12:43PM UTC | 1 Agent replies | 0 Community replies | How do I?

How to stop DOM Based Link Manipilation in struts2.5

Hi, Could you please help me resoving issue of DOM Based Link Manipilation in struts2.5. Its saying whitelisting of URLs, which I have already done in web.xml, but still its not stopping URLs which are already...

Last updated: May 10, 2018 09:52AM UTC | 1 Agent replies | 0 Community replies | How do I?

client failed to negotiate an ssl connection burp

hi guys i have installed burp ca in emulator and it is in user certificate option of phone but when i run any app it says "client failed to negotiate an ssl connection burp" what should i do ? thanks

Last updated: May 08, 2018 10:24AM UTC | 1 Agent replies | 0 Community replies | How do I?

Scheduled Scans doesn´t excluded filters URL

Hi, I need to automatic scan the site test.com, but can´t filter some URL out the scope, in the Target Scope I`m using the Advanced Scope control for exclude specific URLs with regex. I test the regex with manual spidering...

Last updated: May 08, 2018 07:52AM UTC | 1 Agent replies | 0 Community replies | How do I?

manage authentication of application which is using JWT authentication method.

I am strruggling with application which is using JWT for authentication, its keep on prompting for authentication failure. Can you provide complete manual to handle the situation.

Last updated: May 07, 2018 05:40AM UTC | 1 Agent replies | 1 Community replies | How do I?

Certificate issue after restarting burp.

Hi, I have installed certificate in chrome and it works fine. But after restarting burp, the ssl issue comes back :( Please help, i'm sure this is an issue with burp, because i have the same problem with firefox....

Last updated: May 03, 2018 08:47AM UTC | 3 Agent replies | 2 Community replies | How do I?

Do spider inserts data as well ?

Hi I was crawling a site using burp spider, However I saw observed that spider has given some data in "Search field" and in some other fields as well. Do spider inserts any data ?

Last updated: May 01, 2018 09:33AM UTC | 1 Agent replies | 0 Community replies | How do I?

Can't activate

Hi, I use both a Linux and a Macintosh. Can I use the software on both machines if I am the only using BurpSuite? I get a, "no more activation allowed" message. Any help would be appreciated. Sincerely, Tim...

Last updated: May 01, 2018 07:27AM UTC | 1 Agent replies | 0 Community replies | How do I?

Mange multiple tabs

I currently have several tabs in my Burp Suite due to the number of extensions installed. I'm wondering if there is an option within Burp Suite to allow me to manage them? For instance group a few together under a single tab.

Last updated: Apr 30, 2018 02:14PM UTC | 1 Agent replies | 0 Community replies | How do I?

Activate BurpSuite Pro license

BurpSuite Pro does not take my license key on mac, the same key which seems to work fine on linux.

Last updated: Apr 30, 2018 07:58AM UTC | 1 Agent replies | 0 Community replies | How do I?

Page 280 of 316

Burp Suite Support Center

Your source for help and advice on all things Burp-related.

Burp Suite Support Center image