Research Academy
My account Customers About Blog Careers Legal Contact Resellers
The Burp Suite User Forum was discontinued on the 1st November 2024.

Burp Suite User Forum

For support requests, go to the Support Center. To discuss with other Burp users, head to our Discord page.

SUPPORT CENTER DISCORD

Website Requires Plug-in check

Hello greetings. I am attempting to brute force a param. In order to test if the param supplied is valid the page first requires that the browser has a proprietary plug-in installed. The plugin is only supported in IE...

Last updated: Feb 12, 2016 03:53PM UTC | 1 Agent replies | 1 Community replies | How do I?

Anti-CSRF

Hello, I have three related questions; 1)) Can Anti-CSRF tokens be present in publicly accessible forms (for unauthenticated users), or are they should only be present under authenticated user forms? 2)) If burp...

Last updated: Feb 11, 2016 09:52AM UTC | 2 Agent replies | 1 Community replies | How do I?

How do I send keyboard interrupts like CTRL +R for send to repeater through burp extender API

How to send CTRL , ALT or function keys keyboard Interrupt through Burp Extender python API?

Last updated: Feb 10, 2016 10:55PM UTC | 4 Agent replies | 6 Community replies | How do I?

BurpSuite not following redirections

When entering a website which always redirects traffic from http:// to https://, burp is not redirecting automatically from the http to https. Is there a configuration which will let Burp do so?

Last updated: Feb 10, 2016 08:57PM UTC | 2 Agent replies | 4 Community replies | How do I?

Make a proxy faster ?

Hi Im wondering, is there a way to make a proxy more faster and transparent ? (more like undetected ) Because some times, an application detect the use of a proxy and don't allow me to request any data and just block...

Last updated: Feb 10, 2016 11:41AM UTC | 6 Agent replies | 6 Community replies | How do I?

Renew License

I would like to know if it's possible to renew a burp license from the command line? (on Linux) from the command line? (on Linux)

Last updated: Feb 10, 2016 12:30AM UTC | 2 Agent replies | 1 Community replies | How do I?

automatically modifying requests

Proxy is able to intercept all requests and from there, I'm able to manually modify the requests. However, how can set this modification to be done automatically? For example, I would like to change the value of...

Last updated: Feb 08, 2016 10:05AM UTC | 1 Agent replies | 0 Community replies | How do I?

How do I close intruder tabs through Burp extender API

How do I close dynamic intruder tabs such as 1, 2, 3 etc through Burp extender API?

Last updated: Feb 04, 2016 11:18AM UTC | 1 Agent replies | 0 Community replies | How do I?

Distinguishing between the 3 options under "Proxy's Certificate"

Under "Proxy >> Options Proxy Listeners", I see that there are three options under Certificate. 1. Use a self-signed certificate 2. Generate CA-signed per-host certificates 3. Generate a CA-signed certificate with a...

Last updated: Feb 04, 2016 11:07AM UTC | 1 Agent replies | 0 Community replies | How do I?

How do I import third party python library like requests or SendKeys in burp Extender API

How to import python libraries installed from third party sources like requests module in burp extender API.It is not recognizing entire the path "C:\Python27\Lib\site-packages" set in environmental variables

Last updated: Feb 02, 2016 12:03PM UTC | 1 Agent replies | 0 Community replies | How do I?

How do I send each request from Intruder attack box to repeater through API?

I want to send each request from Intruder attack result box to repeater through API? And, How to get all requests in HTTP proxy tab without using def menu_item clicked method() ?

Last updated: Feb 02, 2016 12:01PM UTC | 1 Agent replies | 0 Community replies | How do I?

Problem on weak ephemeral Diffie-Hellman key in Chrome and Android apps

Hi When I try to use browse the HTTS websites via Burp proxy using Chrome(v45.x) and Android apps (v5.11), I got the following problem: "Server has a weak ephemeral Diffie-Hellman public...

Last updated: Feb 02, 2016 11:34AM UTC | 1 Agent replies | 0 Community replies | How do I?

Active scanning – Items with no parameters

When doing an active scan, there is an option to remove items with no parameters. What are these URL parameters? Should we scan them or not necessarily?

Last updated: Feb 01, 2016 04:33PM UTC | 3 Agent replies | 2 Community replies | How do I?

Active scanning – Items with no parameters

When doing an active scan, there is the option to remove items with no parameters. What are these URL parameters? Should we scan them or not necessarily?

Last updated: Feb 01, 2016 03:10PM UTC | 0 Agent replies | 0 Community replies | How do I?

Peer's certificate issuer has been marked as not trusted by the user.

Hi all, I have some weird issues with Burp for the last two days. It first started that some of my Extensions stopped reporting to Issues tab. I shut down Burp, restared it again and all suddent these problems...

Last updated: Feb 01, 2016 12:19PM UTC | 2 Agent replies | 1 Community replies | How do I?

Filtering Intruder results using Regex

I see that in Pro version feature (I don't have a Pro version), it can filter Intruder results by regex. Is this regex matched against the HTTP body or head or both? Is this regex matched against the HTTP response or...

Last updated: Feb 01, 2016 08:52AM UTC | 1 Agent replies | 0 Community replies | How do I?

"Automatic Backup" vs "Scheduled Tasks save state"

Hi, Is there any difference between "Options >> Automatic Backup" and "Options >> Scheduled Tasks >> save state"? Are they saving the same identical thing? Are they just two ways of doing the same thing?

Last updated: Feb 01, 2016 08:47AM UTC | 1 Agent replies | 0 Community replies | How do I?

Log websocket traffic

Hi, On Linux is it possible to get/logging the data coming from a web socket on a file ? Thanks in advance, Francesco.

Last updated: Feb 01, 2016 08:47AM UTC | 1 Agent replies | 0 Community replies | How do I?

How do I automate Burp Intruder ?

How can I select each and every request from HTTPproxy tab and send to Intruder and start attack button through burp extender API? And, how can I filter 200 OK from intruder attack result box through burp extender API?

Last updated: Jan 28, 2016 09:22AM UTC | 1 Agent replies | 0 Community replies | How do I?

How to use intruder to make a dictionary attack against a login that uses websockets?

Typically if I wanted to use intruder to try and use common passwords to log in to an account I would take the following steps: 1) With site running through Burp Proxy I would make a login attempt 2) I would then find...

Last updated: Jan 28, 2016 09:20AM UTC | 1 Agent replies | 0 Community replies | How do I?

320 321
322
323 324

Page 322 of 332

Burp Suite Support Center

Your source for help and advice on all things Burp-related.

Burp Suite Support Center image