How do I? - Page 310 - Burp Suite User Forum

Normandorn

<a href=http://buygenericlevitra20mg.com/>levitra cheap </a>

WilliamOt

<a href=http://buyclomiphenetablets50mg.com/>where can i buy clomiphene </a>

JeremyEt

<a href=http://buyventolinonlinewithoutprescription.com/>can i buy ventolin over the counter </a>

KennethkevaWF

<a href=http://buyvardenafil20mgonline.com/>buy generic vardenafil </a>

Fuzzing request body

How do I send Intruder payloads that include multiple lines? Particularly I want to substitute request XML body.

[Burp Pro] Programmatically create Responses

I am trying to figure out a way of intercepting every request Burp Suite is issuing from all its tools. But i do not want these requests to be actually sent over the net. Instead, i want to create a fake response immediately...

Joshuael

<a href=http://bimatoprostophthalmicsolution003generic.com>bimatoprostophthalmicsolution003generic.net </a>

How do I collect all HTTP request from HTTP history and identify as GET/PUT/POST using extender API?

I need to collect all requests from HTTP history tab which is under proxy tab and need to identify it whether it is PUT or POST or GET and classify it as xml or html or js? I don't want to use menuItemClicked interface,...

Put IParameter list into request body as XML

Hi! I am writing an extension, and I'm trying to insert a List<IParameter> back into the body of a request as XML, after I have modified a parameter in this list. What would be the easiest way to go about doing this? I...

How Do I figure out if the installed Burp is free or professional version

I have Burp installed on my system. Kindly advise how to know if its the free or the professional version. The "about" in "help" is not listing anything except the website url. Also how to upgrade from free to professional...

Regarding settings to be done for get list of tests executed by Burp.

Hi, When I run Burp suite against the application, what settings has to be done to get /view : List of tests ran List of tests failed Failed Tests Name Logs

Collaborator Server Retention

How long does a collaborator server (public one or private one) store (in memory) vulnerable application interactions, assuming burp scanner never polls for the interactions?

Python Code Injection Vulnerability Validation

I used Burp Suite Pro to scan a site. It identified Python Code Injection on a page. The scanner added a cookie to sleep. I used Burp Proxy to add cookie and got the same result. When I used other proxy tools: Web...

Hello. i want to make hmac header.

Some web sites are require hmac header. hmac value is madden using specific algorithom(mix url, parameter and random value when login given) how can i HTTP request with change parameter.?

Send the Scanner through the Proxy

Is it possible to show all the requests the scanner makes through the proxy tab?

Intruder payload.

I am wondering I have loaded some payloads in example "/examples /examples/jsp/index.html /examples/jsp/snp/snoop.jsp" Lets say my URL is http://localhost.com/test/AnotherTest/test.php I have tried both with...

native/hybrid apps for mobile

does Burp suite supports native/hybrid mobile apps for security Testing? if yes , please provide me clear information where to refer? Regards Ravi

SSL certificate issue

How can I prevent my scans from reporting an SSL certificate issue Severity: Medium Confidence: Certain Host: https://localhost:44300 Path: / "The server's certificate is not trusted" Issued to: localhost Issued by:...

handshake_failure

I'm running burp v1.6.36 and using a client ssl certificate to authenticate to secure web pages. I am receiving the error handshake_failure when attempting to access and sites that require the client cert. I am using java...

Finding XSS

Hello , In most of the scans using Burp for XSS , I can see only HTTP 302 responses for the different XSS payloads, is there a best way to find XSS using Burp for more complex application.