How do I? - Page 3 - Burp Suite User Forum

unable to modify capture request

Hello, I am unable to edit/modify the intercepted requests even after sending it to repeater.

How do I make embedded chromium browser only request traffic I tell it to?

Whenever I fire up the embedded browser in Kali Linux, chromium contaminates the HTTP history with useless traffic trying to phone home to Google for various updates/checks/account/sync whatever. And I don't mean javascript...

API scan

How do Perform API's from Burp.

how to disable 404 responce from burp suite report for cross-site scripting.

we have received around 41 cross-site scripting issues, but the response says that 404 error. can you please let us know how to disable generating a report from the 404 response related issues.

Burp Suite Enterprise Edition--Version: 2020.7-5205, Java version: 9.0.4

We have already installed Burp Suite Enterprise Edition and have been using it since month or so. We noticed few things which are different and challenging from Burp suite Professional. One URL is created as one site. And...

How do I log into multiple machines that I own?

I am trying to activate the license on one of my machines and it won't let me. There are some other computers that had issue and were wiped and maybe the license server sees too many machines? How can i take those off and...

Authenticated scans using mobile number and security code

Hello, In the Burpsuite enterprise edition, I wanted to perform an authenticated scan but in my test website I am logging in using mobile number and generated security code instead of username and password. So can I...

How to add my full name in Hall of Fame

Hi In the hall of fame list I am able to show only my username. Is there way to add my surname? I can't see anything in my settings related to this. Whereas some users surname is listed, I was thinking how to do it..?

Throttle requests in Burp Enterprise

Is there any provision for throttling requests in scanning a site. in essence, how to control threads in case of scanning?

How to integrate Google Authenticator Burp Extender with Session Macro

My website have Two Factor Authentication. On successful User/Password combination, the site redirects to input Google Authenticator code from user. I am failing to create a successful macro, as the Google Authenticator code...

Enquiry

How do i use burp suit to intercept an otp been sent to a phone number or email which I don't have with me. Like in PayPal, Bank, Email verification etc.

Lab - Exploiting Java deserialization with Apache Commons

Hi! I'm trying to solve this lab (Exploiting Java deserialization with Apache Commons) but i can't. First, i tried with ysoserial (like in the description of the lab is told) but when i send the request i get a 200 Ok...

Burpe Suite Community (Preconfigured Brower Not Working)

Hello PortSwigger community i am a new white hat hacker and i am learning the trade and taking interest in this tool. I downloaded the latest edition of the community just to test it out before i purchase the professional...

Proxy server for updates

Hi there! Can't get a zScaler proxy working with anonymous logins (SSL inspection disabled) 2020-09-11 12:07:33 WARN e.p.e.s.alerts.AlertFailureListener - Failed to connect securely to server...

Plugin: Going from OS Command injection to shell with tab-completion in Burp

I'm not sure if this is a good place to announce this, but: I wrote a Burp Suite plugin that offers a Shell-like environment right in burp: You can download the plugin...

Install Burpsuite on Kali ARM RaspberryPi 4

The RaspberryPi 4 Image on Offensive-Security doesn't come with BurpSuite. It looks like it isn't supported on ARM images. I was wondering if this is correct or am I missing something. I downloaded this image: Kali...

Create a series of action

Hi there, How do i create a series of actions, for example on a request on the sitemap. 1. Change the HTTP Verb to OPTIONS, observed any allowed method TRACE, HEAD etc 2. Change to GET /$%^&*&^%$#%^&* 3. Use Burp...

Deletion of "wiener" user in "User role can be modified in user profile" lab

I've delete my account (wiener:peter) in Access control vulnerabilities:User role can be modified in user profile lab now I cannot solve the lab Because I can't login to as wiener. How can I reset this lab? It...

Highlight Multiple Lines in the text or draw red box around it

Hi there, Is there a way to highlight multiple text? Or to indicate which header are missing? For example, I want to indicate that Cache-Control Header and XSS-Protection header is missing. *HTTP/1.1 200...

License problem

Dear Burpsuite Support my windows is crashed last week, so i restored my system from backup image. after restore windows system, Burplicense's license became invalide, maybe due to maximum number of licenses. Could you...