Research Academy
My account Customers About Blog Careers Legal Contact Resellers
The Burp Suite User Forum was discontinued on the 1st November 2024.

Burp Suite User Forum

For support requests, go to the Support Center. To discuss with other Burp users, head to our Discord page.

SUPPORT CENTER DISCORD

Authentication Failure from xyx.com

Hi All, Need urgent help, We have a financial Application(xyz) and we are running burp suite for that. And After capturing the target site. i.e.. Login to application >> Navigating entire application links and navigation...

Last updated: Jul 31, 2018 12:55PM UTC | 1 Agent replies | 0 Community replies | How do I?

Scanning abandoned due to too many errors

Hi, I am trying to scan and almost all the requests are getting abandoned due to errors and when checked in Alerts tabs it says "Timeout in transmission from xyz.com" What is missing here?

Last updated: Jul 31, 2018 07:45AM UTC | 3 Agent replies | 2 Community replies | How do I?

Repeat spidering with corrected authentication

I spidered a site, and many of the pages returned 401s. I've since fixed the project authentication settings, and I want to re-spider the pages that returned 401s. If I select the target and send it to spider, nothing...

Last updated: Jul 30, 2018 12:30PM UTC | 1 Agent replies | 0 Community replies | How do I?

Burp's CA certificate was blocked from server

I'm having a problem creating an api for my application https://imgur.com/a/gFxGTZQ - In the above image I used the same request for burp suite and post man. Post man working and burp suite is not - when i use burp...

Last updated: Jul 27, 2018 01:10PM UTC | 3 Agent replies | 3 Community replies | How do I?

Testing web services

Is burp capable of testing web services - can all test cases defined in OWASP cheat sheet be tested ? https://www.owasp.org/index.php/Web_Service_Security_Testing_Cheat_Sheet

Last updated: Jul 27, 2018 11:22AM UTC | 2 Agent replies | 1 Community replies | How do I?

How to only scan once for one url or one host

in some situation, the scanner only need send one request per one URL or one host to detect the vulnerability. but doActiveScan function in IScannerCheck called per insertPoint. that's say:doActiveScan called multiple...

Last updated: Jul 27, 2018 09:13AM UTC | 2 Agent replies | 1 Community replies | How do I?

How do I get burp pro to listen on eth0?

I have installed burp on Azure / Ubuntu server and am trying to get it to listen on eth0 so I can access it remotely from my laptop or my workstation. Maybe my expectations are wrong, but it seems this should be an easy...

Last updated: Jul 27, 2018 09:10AM UTC | 1 Agent replies | 0 Community replies | How do I?

Unable to intercept with Android mobile app using Burpsuite

1.i am using genymotion virtual android device. 2.I have download Google Nexus 5X-7.1.0 3.I have set the necessary proxy setting for burp suite ,as well as wifi proxy connection in genymotion. 4.I have download and...

Last updated: Jul 25, 2018 07:27AM UTC | 2 Agent replies | 1 Community replies | How do I?

Need steps to Record the Jmeter REST API Request

Hi Team - I want to perform security test on REST API services and i'm planning to use burp suite so that it listens to jmeter and capture the web service request which jmeter is sending to server . Also let me know what...

Last updated: Jul 23, 2018 10:48AM UTC | 2 Agent replies | 1 Community replies | How do I?

session id

hi I am creating a web application which will b used by many customers of my company.In this application I want to track my session id and protect it from 3rd party users (who act as man in middle and attack session id and...

Last updated: Jul 23, 2018 08:47AM UTC | 1 Agent replies | 0 Community replies | How do I?

Headless scan in BURP with bearer token

I am trying to do some automated scanning with BURP in an ervironment that requires token authentication. For this purpose I need to login before each session to get a bearer token. This token is in the body of the login...

Last updated: Jul 20, 2018 11:52AM UTC | 3 Agent replies | 5 Community replies | How do I?

No internet connection error when attempting to connect to Google Play Store.

Have cacert.cer installed on Android device and surfing web http and https sites. However when attempting to go to Google Play Store a message there is "No internet connection. Make sure WiFi or cellular data is turned on,...

Last updated: Jul 20, 2018 07:39AM UTC | 1 Agent replies | 1 Community replies | How do I?

NTLM Platform Auth Problem

I'm trying to proxy an internal NTLMv1 site using 1.7.13, and I have the appropriate host entries in User Options/Platform Auth, but I'm getting denied by the remote host. I can connect directly using the browser and creds...

Last updated: Jul 18, 2018 12:29PM UTC | 2 Agent replies | 1 Community replies | How do I?

Burp Collaborator Server Error Runing

I setup collaborator server with config https://pastebin.com/raw/LmQx27yz, but it is error: http://prntscr.com/k5fyag I have configured iptables, all ports open. I do not know where the error. Thank you so much.

Last updated: Jul 12, 2018 07:24AM UTC | 1 Agent replies | 0 Community replies | How do I?

Remote host connection closed during handshake

Hi, I'm getting the alert "Remote host connection closed during handshake" while intercepting the Android and IOS applications. I have tried with different certificates and different SSL options but still the error....

Last updated: Jul 11, 2018 07:25AM UTC | 1 Agent replies | 0 Community replies | How do I?

Whatsapp and twitter MITM

Dears, Can anyone please assist why cant i intercept Whatsapp or twitter packets from mobile device even after installing the burp certificate and unpinned the app.

Last updated: Jul 09, 2018 07:12AM UTC | 3 Agent replies | 2 Community replies | How do I?

Intercepting data on Android Device

Hello, I am still struggling to troubleshoot the issue I was facing earlier. I am trying to use Burp Suite to see my network traffic on my mobile device however when I connect it I can see the request in the Burp Suite...

Last updated: Jul 06, 2018 09:22AM UTC | 2 Agent replies | 1 Community replies | How do I?

How to launch Intruder attack from command line

Hi, I would like to know if there is a way to record an Intruder attack so that it would be possible to launch it again from command line. The idea is to automatically launch fuzz testing. Through my research, I saw...

Last updated: Jul 05, 2018 02:56PM UTC | 2 Agent replies | 1 Community replies | How do I?

Intercepting data on Android Device

Hello, Please can someone help me with the following: I am trying to use Burp Suite to see my network traffic on my mobile device however when I connect it I can see the request in the Burp Suite however my phone...

Last updated: Jul 05, 2018 06:58AM UTC | 2 Agent replies | 2 Community replies | How do I?

Clarification on Webservices scanning

I have some clarifications on web service testing. Question 1: Is burp suite capable of performing testing webservices against all known vulnerabilities associated with web services ? All scanning options present under...

Last updated: Jul 04, 2018 09:03AM UTC | 4 Agent replies | 3 Community replies | How do I?

291 292
293
294 295

Page 293 of 332

Burp Suite Support Center

Your source for help and advice on all things Burp-related.

Burp Suite Support Center image