Burp Suite User Forum

Login to post

unable to intercept google.com request

one of the application i am testing using google recaptcha which fetched from "https://www.google.com/recaptcha/api.js?onload=onloadCallback&render=explicit&hl=en" then i tried to access google.com it also not working. i...

Last updated: Jun 20, 2022 05:42AM UTC | 1 Agent replies | 0 Community replies | How do I?

Update

Ever since update i can no longer access anything with my burpsuite i get errors when i check for updates i get unable to check for updateds due to network error even when i try to access the browser within the proxy...

Last updated: Jun 18, 2022 04:13PM UTC | 0 Agent replies | 1 Community replies | How do I?

Lab - Reflected XSS into HTML context with most tags and attributes blocked

Hi I am busy with the lab, "Reflected XSS into HTML context with most tags and attributes blocked". I successfully fire the print() on myself and the simulated victim, but for extra practice preparing for the burp suite...

Last updated: Jun 18, 2022 12:16PM UTC | 1 Agent replies | 1 Community replies | How do I?

XXE file protocol to retrieve files

Hello, first of all: Thanks for the amazing learning materials, I have really learned a lot! My question concerns XXE, specifically the "file" protocol mentioned in the learning materials. It says that: "The...

Last updated: Jun 17, 2022 09:55PM UTC | 0 Agent replies | 1 Community replies | How do I?

How to run multiple scans with different scan configurations at the same time.

Hello, currently I launch multiple scans (each one with a different scan configuration) over one request. However this is time-consuming, and I want to know if there is a way I can semi-automate this process, if there is...

Last updated: Jun 17, 2022 02:57PM UTC | 1 Agent replies | 0 Community replies | How do I?

Issue type Certain , confirm and tentative( what does this mean )

Issue type Certain , confirm and tentative( what does this mean ) Confirm mean sure, no false-positive Certain mean sure, no false-positive tentative means not sure there may be the false postive I could not...

Last updated: Jun 17, 2022 02:21PM UTC | 2 Agent replies | 3 Community replies | How do I?

How do I stop burpcollaborator hitting my site?

I am running some servers for personal use and have never used burp suite or any of your tools. But my nginx logs are showing loads of hits with burpcollaborator.net in the UA I've blocked the IP they are coming from with...

Last updated: Jun 17, 2022 01:40PM UTC | 1 Agent replies | 0 Community replies | How do I?

Secure Connection Failed

I am facing the Secure Connection Failed for HTTPS websites. I have also added the Portswigger ca certificate still facing the same issue.

Last updated: Jun 17, 2022 01:36PM UTC | 1 Agent replies | 0 Community replies | How do I?

How are certain vulnerabilities listed in the labs meant to be found

Hi, while doing the labs and thinking about taking the Burpsuite Practitioner exam, I was wondering how some of these vulnerabilities are meant to be found. As an example, let's look at the CSRF labs. The following...

Last updated: Jun 17, 2022 01:26PM UTC | 1 Agent replies | 0 Community replies | How do I?

Problem during crawling in authentication

Hi, during crawling process in burp suite in authentication process in it is showing error: Failed to find additional rooms after recorded sequence: sequence_name'. I am using sequence recorder to authenticate. Although...

Last updated: Jun 17, 2022 01:18PM UTC | 9 Agent replies | 11 Community replies | How do I?

PRACTITIONER Authentication bypass via encryption oracle

on the solution box: 8.In Decoder, URL-decode and Base64-decode the cookie. Select the "Hex" view, then right-click on the first byte in the data. Select "Delete bytes" and delete 23 bytes. why url-decode and base64...

Last updated: Jun 17, 2022 09:45AM UTC | 1 Agent replies | 0 Community replies | How do I?

No response from remote server

Hello PortSwigger i have a common problem with this product, and it's the same for the past few days "No response from remote server" I did as much research as possible i imported and installed the certificate and so on and...

Last updated: Jun 17, 2022 06:59AM UTC | 1 Agent replies | 0 Community replies | How do I?

Browser doesn't load any page

burp's embedded browser doesn't load any page. I tried with intercept off and on and I checked the proxy setting. after starting to load a page after a few seconds loading stops and there is a white screen on the browser

Last updated: Jun 17, 2022 06:57AM UTC | 2 Agent replies | 2 Community replies | How do I?

Silent install for community edition

How can I install the Application on a windows machine silently? are there any options available?

Last updated: Jun 16, 2022 08:03AM UTC | 1 Agent replies | 0 Community replies | How do I?

Bapp Store

I've downloaded Burp Pro. Everytime i go into burp pro and i got to the Bapp store it tells me to install. I hit install and it says "installing" for hours and hours and never loads the store

Last updated: Jun 15, 2022 02:31PM UTC | 4 Agent replies | 4 Community replies | How do I?

Setup BURP Enterprise In a Docker Container

Hey All, I want to setup BURP Enterprise edition in a Docker container, so I can run it in a Kubernetes cluster. The documentation doesn't seem to show how to pass through the licensing section with variables or config...

Last updated: Jun 15, 2022 02:28PM UTC | 4 Agent replies | 3 Community replies | How do I?

XML injection error in JSON requests

Hello! We are doing burp scans on our application to tighten up security. And the scanner says we have XML injection vulnerability because it inserted XML into JSON and the back-end threw an exception. The errors are...

Last updated: Jun 15, 2022 12:38PM UTC | 2 Agent replies | 1 Community replies | How do I?

Flipping bit attack base64

The cookie of interest is encrypted and encoded two times with base64 I need Burp to decode two times, flip bit, and encode two times each attack. It looks like I can decode under Payload's "Payload Processing"...

Last updated: Jun 14, 2022 09:59AM UTC | 2 Agent replies | 1 Community replies | How do I?

Please make activate my burp pro license

Hello, Suddenly my burp pro license is failed. If you reactivate my burp pro license, It will be great thanks.

Last updated: Jun 13, 2022 12:47PM UTC | 1 Agent replies | 0 Community replies | How do I?

Different results Automated Scan vs Manual Active Scan

I am pretty sure this is some misconfiguration issue but I would like to clarify this. When I do Automated scan with "crawl fast" and "audit maximum" configurations I am not getting same results as when I do "active scan"...

Last updated: Jun 13, 2022 09:26AM UTC | 1 Agent replies | 0 Community replies | How do I?

Page 3 of 236

Burp Suite Support Center

Your source for help and advice on all things Burp-related.

Burp Suite Support Center image