How do I? - Page 3 - Burp Suite User Forum

banner : information disclosure through service banner

tcp port 80,443 machine name [ip address] which revealed technical configuration details I am using burp professional, I have asp.net website and I have disabled the headers using...

How can i make the scan time reduce?

Hi, I signed up to Burp professional edition. Tried to scan my application, It is taking really long time almost more than a week. Is there any way i can reduce the scan time? Or Just wanted to know if i am doing it...

security scan and out-of-date libraries

For out-of-date libraries, is there a list of what libraries Burp check versions for? If so, how often do new libraries get added and how often do the most recent versions for these checks get updated? I will be grateful...

Reset OAuth lab

Team, Please reset the below two...

how do i install the burp suite enterprise on the kali linux rootless nethunter on android

i was able to install the java pro version on kali linux nethunter and it worked but i could not install the enterprise edition at all here is the commands i used chmod +x...

Urgent!

I have bought a professional license yesterday and I have checked my account you have received a money. Then you have sent a below e-mail, Order Reference: Dear Emek Safak Aslan We are really sorry but there seems...

Manual crawling the application to perform the scan.

Hi Team, After the active authenticated(authentication is recorded) scan of the application, we noticed that tool is not covering all paths/API of the application in the scan. so that we want to crawl the entire...

Sending a same second request after checking the first request response?

Hi I have googled this but I have not found anything useful. I apologize in advance if a response already exists about this task. I have used Burp to intercept a request and based on the response modify the body to...

Detected Deserialization RCE: Jackson

Hi I'm not smart person .But I would like ask about some issue.How is treat that situation if some extension show my this Bug.This can be valid Poc.Or i have to exploit this. ------------------------------- A payload...

3 Days Now, No License

Hi, Purchased a license 3 days ago. I've sent emails to both "office" and "hello," with no response. Please advise. Thanks

How to Save all images in files which were processed via proxy?

Hi What would be the best way to configure burp pro to save in files all images which were opened via Burp proxy? Thanks

Advanced Target Scope - Load File

Hey all, I normally used regex in advanced scope to make sure I capture all sub domains. However, I have a list of over 100 I'd like to check. I created a TXT file of the domains with regex but when I go to Load the file...

Remote host terminated the handshake

I'm trying to proxy some communication for an app on iOS. Unfortunately the app in question errors out with "The client failed to negotiate a TLS connection to site[.]com:443: Remote host terminated the connection" I've...

PKCS #11 support for Burp CA

We are considering to use Burp Suite in our environment. However, the admins (understandably) don't like having private keys lying around on disk. Also portswigger mentions potential problems at the bottom of the page:...

"Did Not Find a login Form"

I started a basic scan and could not execute the authenticated craw and received the dreded message "Did Not Find a Login Form" the following is a portion of the login screen elements. <input...

Bruteforcing with extension

Hi The tested mobile app is using GNU ZIP(gzip) for making request and i am using Decompressor extension for view the gzzip data and to modify parameter and make request. .In repeater ill change a parameter in GZip data...

Burp embedded browser Feature - Chromium sandbox issue

Hi team , Thanks for the embedded browser feature on burp . I was running burp on linux instance, Getting error while accessing burp embedded browser feature (v2020.7) Error message : "...

lab: Forced OAuth profile linking

in my home page i did not get login with social Media option tab. what to do

Error: request timeout

While testing a service through the repeater and intruder, few of the requests out of hundreds are showing as “Error: request timeout.” There is no response from the service. In the intruder results, only the error column is...

Need to upgrade to lates burp

1. Trying version (burpsuite_pro_v2021.8.3.jar). Tried with command: java -jar /burp/burpconfig/burp-rest-api-2.0.1.jar --headless.mode=true --config- file=/burp/burpconfig/ProjectConfig.json...