How do I? - Page 316 - Burp Suite User Forum

Settings doesnt save when we close and reopen burp

Hello, When I open up burp, I make changes to various setting available (like target scope settings, proxy settings, scanner settings etc etc etc) when I close and reopen burp, every thing restores to default. how do...

Repeater interprets command incorrectly

Using OPTIONS HTTP Method does not render any results using the command below. OPTIONS / HTTP/1.0 I used the "Copy as curl command" option of the repeater and the repeater is interpreting the command incorrectly as...

Need help with password cracking

So my friend gave me permission to try and hack his instagram So first I intercept while tring to login to his account and i get POST /accounts/login/ajax/ HTTP/1.1 Host: www.instagram.com User-Agent: Mozilla/5.0...

Burpsuite Closing the Connection

Hi, I am having an issue testing a specific web app. The application, when not proxied, keeps the tcp connection open, and makes multiple HTTP requests over this connection. When proxied through Burp it closes the...

Using sqlmap with Burp

Hi All, I have a SOAP API that require two unique parameters (Email and UserID). I'd like to use Burp to intercept the sqlmap request and replace these two parameters with random and sequencial numbers. Is that...

Non-HTTP request

Hi Burp team! I have a java application to check. The app starts the communication over HTTPS and then the communication changes to non-web protocol (no over HTTP just over sockets and the content is java serialized). I...

XSS vulnerabilites

Hi, I am reading the Web application hackers handbook and came across numerous XSS filter evasion techniques. Wanted to know if using the scanning functionality of Burp Suite automatically checks for all or most of them ?...

Ability to customize the project files to save space?

I noticed that the "saving state" functionality is due to be replaced by the new project file functionality in the future. Is there any way to customize what is saved to a project file in the current version of Burp, or is...

Configuring burpsuite to work with youtube on https

Hi, I'm trying to look at what's going on in the traffic in particular to youtube, but couldn't get the BS proxy to work with it. The other normal sites are fine but I guess its the https that youtube uses that's causing...

Web pages keeps on loading through burp free version?

I have set up Burp Suite with Firefox and have used all the correct settings, and it is connecting to the proxy on 127.0.0.1:8080. The Burp Suite software is able to see the pages I try to visit in the browser and can give...

Response not coming for the request passing through Burp

Hi Team, We are testing an iWatch application and routed the traffic from iPhone to our burpsuite. The issue is that we can see the URLs passing through Burp, but there is no response coming back. In the alerts, we are...

SAML Raider

How do I use SAML raider in BurpSuite?

Burp Query

Hi, When i run a authenticated scan through Burp for a website ,the website gets timed out even though am active in the page. can you please let me know what could be the reason. Thanks Nishma

How can I review all HTTP headers for requests and responses

Hi, How can I review all HTTP headers for requests and responses from history tab? I need to review them and to analyze but I didn't find a way of doing this. I have tried to save state/project and to analyze the file...

?????? ??????????? ?? ??????????

<a href=http://flyinsky.ru/directions/MOW/>?????????? ?????? ??????????? ?? ?????</a> ? ??? ????????? ??? ???????????? ???????? ??????? ??????? ? ?????? ???? ???????????? ??? ???? ????? ?????? ? ???????, ???????...

knowing burp license activated pcs

I want to know, how to figure out or is there any way which let me know the systems on which burp license is activated?

Pentesting serialized PHP objects

Hello, Can you please tell me an efficient way to test base64 encoded PHP serialized objects? Recently I see this scheme very often. Is there any extension for that? (I have the PRO version) Thank you

Resume the Scanner thru API

As of Burp 1.7+, when the Burp Suite is launched with "--project-file" option at command line, the Spider and Scanner tools will be automatically paused when the project reopens. My understanding is, even though Spider is...

java.io.streamcorruptedexception while using BurpJDser extension

I am using BurpSuite Free 1.6.25 on Windows Server 2012R2, Java 1.7_u80 x86 with BurpJDSer to intercept JNLP and JAR traffic. In other cases, the setup works like charm. However while for one particular JNLP, while...

Confirm IP address is rotating regularly when using TOR SOCKS5 proxy?

I have Burp set up to the TOR SOCKS5 proxy. As I understand it, TOR switches to a new exit node every 10 minutes or so, which is true is ideal, as this means when I am running intruder, it will look like it is coming from...