Burp Suite User Forum

Login to post

banner : information disclosure through service banner

tcp port 80,443 machine name [ip address] which revealed technical configuration details I am using burp professional, I have asp.net website and I have disabled the headers using...

Last updated: Oct 06, 2021 12:26PM UTC | 1 Agent replies | 0 Community replies | How do I?

How can i make the scan time reduce?

Hi, I signed up to Burp professional edition. Tried to scan my application, It is taking really long time almost more than a week. Is there any way i can reduce the scan time? Or Just wanted to know if i am doing it...

Last updated: Oct 06, 2021 08:10AM UTC | 2 Agent replies | 1 Community replies | How do I?

security scan and out-of-date libraries

For out-of-date libraries, is there a list of what libraries Burp check versions for? If so, how often do new libraries get added and how often do the most recent versions for these checks get updated? I will be grateful...

Last updated: Oct 06, 2021 07:30AM UTC | 1 Agent replies | 0 Community replies | How do I?

Reset OAuth lab

Team, Please reset the below two...

Last updated: Oct 06, 2021 07:16AM UTC | 1 Agent replies | 0 Community replies | How do I?

how do i install the burp suite enterprise on the kali linux rootless nethunter on android

i was able to install the java pro version on kali linux nethunter and it worked but i could not install the enterprise edition at all here is the commands i used chmod +x...

Last updated: Oct 06, 2021 04:39AM UTC | 1 Agent replies | 1 Community replies | How do I?

Urgent!

I have bought a professional license yesterday and I have checked my account you have received a money. Then you have sent a below e-mail, Order Reference: Dear Emek Safak Aslan We are really sorry but there seems...

Last updated: Oct 05, 2021 01:19PM UTC | 1 Agent replies | 0 Community replies | How do I?

Manual crawling the application to perform the scan.

Hi Team, After the active authenticated(authentication is recorded) scan of the application, we noticed that tool is not covering all paths/API of the application in the scan. so that we want to crawl the entire...

Last updated: Oct 05, 2021 12:04PM UTC | 1 Agent replies | 0 Community replies | How do I?

Sending a same second request after checking the first request response?

Hi I have googled this but I have not found anything useful. I apologize in advance if a response already exists about this task. I have used Burp to intercept a request and based on the response modify the body to...

Last updated: Oct 05, 2021 08:51AM UTC | 1 Agent replies | 0 Community replies | How do I?

Detected Deserialization RCE: Jackson

Hi I'm not smart person .But I would like ask about some issue.How is treat that situation if some extension show my this Bug.This can be valid Poc.Or i have to exploit this. ------------------------------- A payload...

Last updated: Oct 05, 2021 07:37AM UTC | 3 Agent replies | 2 Community replies | How do I?

3 Days Now, No License

Hi, Purchased a license 3 days ago. I've sent emails to both "office" and "hello," with no response. Please advise. Thanks

Last updated: Oct 05, 2021 07:36AM UTC | 1 Agent replies | 0 Community replies | How do I?

How to Save all images in files which were processed via proxy?

Hi What would be the best way to configure burp pro to save in files all images which were opened via Burp proxy? Thanks

Last updated: Oct 04, 2021 05:29PM UTC | 1 Agent replies | 0 Community replies | How do I?

Advanced Target Scope - Load File

Hey all, I normally used regex in advanced scope to make sure I capture all sub domains. However, I have a list of over 100 I'd like to check. I created a TXT file of the domains with regex but when I go to Load the file...

Last updated: Oct 04, 2021 04:35PM UTC | 4 Agent replies | 5 Community replies | How do I?

Remote host terminated the handshake

I'm trying to proxy some communication for an app on iOS. Unfortunately the app in question errors out with "The client failed to negotiate a TLS connection to site[.]com:443: Remote host terminated the connection" I've...

Last updated: Oct 04, 2021 03:06PM UTC | 5 Agent replies | 5 Community replies | How do I?

PKCS #11 support for Burp CA

We are considering to use Burp Suite in our environment. However, the admins (understandably) don't like having private keys lying around on disk. Also portswigger mentions potential problems at the bottom of the page:...

Last updated: Oct 04, 2021 01:42PM UTC | 2 Agent replies | 1 Community replies | How do I?

"Did Not Find a login Form"

I started a basic scan and could not execute the authenticated craw and received the dreded message "Did Not Find a Login Form" the following is a portion of the login screen elements. <input...

Last updated: Oct 04, 2021 12:58PM UTC | 6 Agent replies | 6 Community replies | How do I?

Bruteforcing with extension

Hi The tested mobile app is using GNU ZIP(gzip) for making request and i am using Decompressor extension for view the gzzip data and to modify parameter and make request. .In repeater ill change a parameter in GZip data...

Last updated: Oct 04, 2021 11:28AM UTC | 1 Agent replies | 0 Community replies | How do I?

Burp embedded browser Feature - Chromium sandbox issue

Hi team , Thanks for the embedded browser feature on burp . I was running burp on linux instance, Getting error while accessing burp embedded browser feature (v2020.7) Error message : "...

Last updated: Oct 04, 2021 10:18AM UTC | 5 Agent replies | 5 Community replies | How do I?

lab: Forced OAuth profile linking

in my home page i did not get login with social Media option tab. what to do

Last updated: Oct 04, 2021 09:23AM UTC | 1 Agent replies | 0 Community replies | How do I?

Error: request timeout

While testing a service through the repeater and intruder, few of the requests out of hundreds are showing as “Error: request timeout.” There is no response from the service. In the intruder results, only the error column is...

Last updated: Oct 04, 2021 09:03AM UTC | 8 Agent replies | 11 Community replies | How do I?

Need to upgrade to lates burp

1. Trying version (burpsuite_pro_v2021.8.3.jar). Tried with command: java -jar /burp/burpconfig/burp-rest-api-2.0.1.jar --headless.mode=true --config- file=/burp/burpconfig/ProjectConfig.json...

Last updated: Oct 04, 2021 09:00AM UTC | 1 Agent replies | 0 Community replies | How do I?

Page 3 of 199

Burp Suite Support Center

Your source for help and advice on all things Burp-related.

Burp Suite Support Center image