Burp Suite User Forum

Login to post

Unable to connect to burp from local network

Hi, I've burp on arch linux and I'm unable to connect to burp from my local network. I've tried from phones/laptops from my network to no avail. However I can connect to it from my computer through Firefox (locally). I...

Last updated: Nov 18, 2022 08:01AM UTC | 6 Agent replies | 5 Community replies | How do I?

reset all my labs and progress

could you reset all my labs and progress

Last updated: Nov 17, 2022 03:13PM UTC | 1 Agent replies | 0 Community replies | How do I?

My organization uses multiple http proxies via the windows internet explorer settings - can burp be configured to use this setup?

In a vast enterprise, we use multiple proxies for multiple destinations and web apps, and these change over time (uat, dev, prod, etc). Is it possible to configure Burp Suite Pro in Windows to consume what my Windows...

Last updated: Nov 17, 2022 02:15PM UTC | 2 Agent replies | 2 Community replies | How do I?

BurpSuite Certified Practitioner Exam Voucher

Hello team, I bought the voucher one year ago and have just registered on Examity. On Examity it says that I have only 15 minutes for the exam and that the Exam Window is until 2023. Exam Window Nov 16, 2021...

Last updated: Nov 17, 2022 08:56AM UTC | 1 Agent replies | 0 Community replies | How do I?

Reset my all lab

I want to solve again all lab so reset my all lab that i have solved

Last updated: Nov 17, 2022 08:22AM UTC | 35 Agent replies | 39 Community replies | How do I?

CSFR POC

hi Team I ask to a lot of question but I have problem understand it.When xss is in cookies part and I try to create CSFR POC do not include cookies. How to handle with this issue.

Last updated: Nov 17, 2022 08:09AM UTC | 3 Agent replies | 3 Community replies | How do I?

Prototype Pollution not marked as passed

Hello team, I passed the domxss prototype pollution and was able to get the alert, however the platform is not marking it as solved. Should it be working like with the other...

Last updated: Nov 16, 2022 12:09PM UTC | 2 Agent replies | 1 Community replies | How do I?

Revoke User License

Hi, One of our employees had resigned, the laptop had been formatted. We need to reuse the license for another user. Can you please advise how to do it?

Last updated: Nov 16, 2022 11:37AM UTC | 1 Agent replies | 0 Community replies | How do I?

Differences between 2 scans process

Hi. I have a question about scan/audit process in Burp. Our company has a process of running the scans with Insomnia (proxy with 8080 port). Once we have sent it to Burp and we got the task in HTTP request in Proxy tab, we...

Last updated: Nov 15, 2022 09:13AM UTC | 1 Agent replies | 0 Community replies | How do I?

Crawling a site with cookies

Hello, I am trying to crawl (right click on the site root in Target, select Scan, select Crawl in Scan type) a web site that uses cookies for session tracking. I get "Paused task due to: Could not connect to any seed...

Last updated: Nov 15, 2022 08:43AM UTC | 1 Agent replies | 0 Community replies | How do I?

No more activation allowed for this license

Hi team, While activating Burp Suite Professional license, the following error occurred: ``` Activation Failed No more activation allowed for this license. ``` Could you help us?

Last updated: Nov 15, 2022 01:21AM UTC | 1 Agent replies | 1 Community replies | How do I?

How to setup 'iptables' to redirect traffic to burp proxy?

Hello, I am using Ubuntu and I would like to know how to setup 'iptables' to redirect traffic to burp proxy? I'd like to test a non-proxy aware thick client, do I need to enable Invisible Proxying? -...

Last updated: Nov 14, 2022 02:20PM UTC | 2 Agent replies | 1 Community replies | How do I?

How to intercept Go programs' HTTP requests?

I am trying to test Go programs with BurpSuite and I can't seem to find how to do that? Could you please help?

Last updated: Nov 14, 2022 01:33PM UTC | 1 Agent replies | 0 Community replies | How do I?

Acedemy Lab Practitioner level: Exploiting cross-site scripting to steal cookies

Hi User form, I'm currently trying to solve the "Exploiting cross-site scripting to steal cookies" lab (https://portswigger.net/web-security/cross-site-scripting/exploiting/lab-stealing-cookies), and I successfully...

Last updated: Nov 14, 2022 12:09PM UTC | 1 Agent replies | 0 Community replies | How do I?

CSRF generator XHR payload

Hey, how does the payload for the body is generated when using the XHR CSRF generator from burp? It seems like hex encoding but it is not decoded successfully, how do I replicate the same encoding on the body of my...

Last updated: Nov 14, 2022 10:13AM UTC | 3 Agent replies | 2 Community replies | How do I?

Problems with passing Lab: CL.0 request smuggling

Hello! Could you help to pass this lab - https://portswigger.net/web-security/request-smuggling/browser/cl-0/lab-cl-0-request-smuggling I have done steps following solutions, but can't reach final actions There are not...

Last updated: Nov 14, 2022 10:07AM UTC | 1 Agent replies | 0 Community replies | How do I?

Reset progress

Hi, can you please reset my progress? I have presentation in my school about ssrf and i need to delete Carlos again :D

Last updated: Nov 14, 2022 08:57AM UTC | 1 Agent replies | 0 Community replies | How do I?

Lab does not solve even if it is correct

Kindly help me with this, as none of the machines are showing solved.

Last updated: Nov 14, 2022 08:36AM UTC | 13 Agent replies | 15 Community replies | How do I?

Web pages don't load through proxy, is this normal?

My problem is something I expected to be rather common, but apparently not. I have set up Burp Suite with Firefox and have used all the correct settings, and it is connecting to the proxy on 127.0.0.1:8080. The Burp Suite...

Last updated: Nov 14, 2022 08:14AM UTC | 16 Agent replies | 20 Community replies | How do I?

DOM XSS in jQuery selector sink using a hashchange event

Hi, does anyone understand how the payload works for this? <iframe src="https://YOUR-LAB-ID.web-security-academy.net/#" onload="this.src+='<img src=x onerror=print()>'"></iframe> Why do we have to send to the exploit...

Last updated: Nov 13, 2022 06:29AM UTC | 1 Agent replies | 3 Community replies | How do I?

Page 3 of 255

Burp Suite Support Center

Your source for help and advice on all things Burp-related.

Burp Suite Support Center image