How do I? - Page 296 - Burp Suite User Forum

Fuzz APIs ?

Do burp is having any extension which can help in Pen test of APIs ? Like another tool API fuzzer ? along with Intruder what else can be used to do API pen test automatically ?

How to stop DOM Based Link Manipilation in struts2.5

Hi, Could you please help me resoving issue of DOM Based Link Manipilation in struts2.5. Its saying whitelisting of URLs, which I have already done in web.xml, but still its not stopping URLs which are already...

client failed to negotiate an ssl connection burp

hi guys i have installed burp ca in emulator and it is in user certificate option of phone but when i run any app it says "client failed to negotiate an ssl connection burp" what should i do ? thanks

Scheduled Scans doesn´t excluded filters URL

Hi, I need to automatic scan the site test.com, but can´t filter some URL out the scope, in the Target Scope I`m using the Advanced Scope control for exclude specific URLs with regex. I test the regex with manual spidering...

manage authentication of application which is using JWT authentication method.

I am strruggling with application which is using JWT for authentication, its keep on prompting for authentication failure. Can you provide complete manual to handle the situation.

Certificate issue after restarting burp.

Hi, I have installed certificate in chrome and it works fine. But after restarting burp, the ssl issue comes back :( Please help, i'm sure this is an issue with burp, because i have the same problem with firefox....

Do spider inserts data as well ?

Hi I was crawling a site using burp spider, However I saw observed that spider has given some data in "Search field" and in some other fields as well. Do spider inserts any data ?

Can't activate

Hi, I use both a Linux and a Macintosh. Can I use the software on both machines if I am the only using BurpSuite? I get a, "no more activation allowed" message. Any help would be appreciated. Sincerely, Tim...

Mange multiple tabs

I currently have several tabs in my Burp Suite due to the number of extensions installed. I'm wondering if there is an option within Burp Suite to allow me to manage them? For instance group a few together under a single tab.

Activate BurpSuite Pro license

BurpSuite Pro does not take my license key on mac, the same key which seems to work fine on linux.

How do i disable default scanner?

The default scanner engine sends a lot of requests, can i disable it and only use my scanner extension to scan? I've tried method 'removeScannerCheck' and 'removeScannerListener', but didn't work.

Which emulator should I configure to integrate with burp suite ?

Seems like burp is not supporting all emulators, I have seen somewhere in post. I want to perform pen testing of a native app, which emulator you would like to suggest ? Also how to configure emulator with burp suite ?...

https://www.youtube.com/watch?v=EmUOzsaL4Ec

Pros of EXMO: There is an online support, enough operational There is a possibility of replenishment in USD RUB UAH PLN cards with a visa and a master card. The possibility of trading in a pair USD / BTC / XMR / DASH...

How do I automate Intruder Attack?

How to start intruder start attack button through burp extender python API?

Web Application Scanning

I'm currently looking to run the burp tool against several web applications in different environments. I've read through the basic scan guide and was thinking of starting with just a active scan and or passive scan and dive...

Burp collaborator

I keep getting error that your collaborator instance is outdated. How do I update my collaborator server?

Regarding hot to generate the Automatic word report of burpsuite web vulnerability test.

Dear Sir/Mam I wanted to get the word report of the burp web vulnerability test report. I am using burpsuite professional free license which will expire in a week. I wanted to test the burpsuite if that helps get what our...

how to find which option or extension edited my requests?

Hi all, I'm seeing from proxy history that Burp edited POST requests in removing authorization header from original requests. this caused authentication failures for my session. 1. i tried to find out which extension...

How can I test native application through Burp suite ?

Hi, We have one licence of Burp Suite. I want to purchase another for my current project. Which involves API, Native and Web application. So my question is Burp can test native application ? Do we have some useful...

Can't download certificate for Firefox on kali

From where I can download certificate for Firefox browser on Kali? I tried visiting http://burp but it redirects me to http://www.inert.com/ What is the alternative way of downloading the certificate?