How do I? - Page 4 - Burp Suite User Forum

LAB: Exploiting HTTP request smuggling to capture other users' requests support

Hi, Having trouble with the HTTP Request Smuggling lab "Exploiting HTTP request smuggling to capture other users' requests". I can get the user request to appear in the blog post comments and have been carefully...

how do I scan hidden get parameters?

We have pages with hidden get parameter and burp is not able to see and scan them - can I add them manually so burp can scan them? If so, how can this be done?

Can't open newly downloaded burpsuite on my kali linux

Picked up _JAVA_OPTIONS: -Dawt.useSystemAAFontSettings=on -Dswing.aatext=true WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by burp.oh...

Refund

Hello there, mailed to you too. Due to private causes, I want to refund the Burp Suite that I bought days ago. Not used more than 1-2 days. Thank you.

Why Burp is running get requests if any url is given without specifying its http method .

I have provided a url to burp to scan. Burp is blindly running get requests on that though it is intelligent enough to know which all http methods are allowed for that request.

Key-value storage

Hi, I need write custom extension to keep pairs from login request: login / auth-code from cookies. I think, that I can catch all login requests and after that write login credentials to the file. After that, I want to...

Burp Suite professional Trial

I am trying to register for burp suite trial but every time a popup shows and says "Company name required" even though I am filling company name. Please help in this.

Processing AES encrypted JSON paylaod

Hi, I am currently testing an API which has the following POST request in JSON format: { "Code1": "123", "Time": "2020-07-20 10:00:00", "Amount": 1, "List": [{ "Code2": "abc123", "Color":...

GraphQL queries to get all issues of the lastest successful scan on a site

Hi! I'm trying to use the new GraphQL API to pull issue data from scans performed by Burp Enterprise. I want to correlate issues to a Site via the latest scan performed on the Site. Through experience in the API, I've...

graphQL API

Hello, I maybe doing things the wrong way but I am trying to get all issues type of all scans with the API and the request below leads me to error 77 "Unexpected Graph Error". Any help available ? query getIssues { ...

Unable to start BurpSuite using powershell command in windows

I am using below command to start Burpsuite Start-Process "`"C:\Program Files\Java\jre1.8.0_201\bin\javaw.exe`"" -ArgumentList "-jar","-Xmx1G","`"C:\Program Files\BurpSuiteCommunity\burp-rest-api-2.1.0.jar`"","`"C:\Program...

Please confirm the tool support

HI, BurpSite Enterprise what are the below can be tested .. 1. Web side vulnerabilities 2. Android app scanning to find vulnerabilities 3. Server side testing vulnerabilities scanning. 4. Static code...

Requests showing -1 status and response length

Requests not returning any response after executing. When i installed logger++ , it shows me Requests showing -1 status and response length.

How do i add al subdomains to scope?

I have the domain test.com How can i add all the subdomains to the scope? *.test.com

How do i install my free trial - step by step procedure required

Stuck with wizard

unable to view to the solutions

i am unable to access the solutions tab in the labs

Severity Category

When the severity of a found vulnerability is classified as "information", what does it really mean? And also what is the degree of severity. Based on the other severity category it is obious a high is more severe than a...

Downloading Burp

Hi there, I already have the license key of Burp shared by my company. Can you share me the downloadable .exe of burp suite community edition? Where I can put the license key start working on the Burpsuite....

Unable to view solutions in Web Security Academy

Unable to view solutions in Web Security Academy, Drop down button is not working.

fitur solution cannot display on academy

fitur solution on academy cannot dispplay, and i can't open the solution