Burp Suite User Forum

Login to post

LAB: Exploiting HTTP request smuggling to capture other users' requests support

Hi, Having trouble with the HTTP Request Smuggling lab "Exploiting HTTP request smuggling to capture other users' requests". I can get the user request to appear in the blog post comments and have been carefully...

Last updated: Jul 27, 2020 08:29AM UTC | 2 Agent replies | 1 Community replies | How do I?

how do I scan hidden get parameters?

We have pages with hidden get parameter and burp is not able to see and scan them - can I add them manually so burp can scan them? If so, how can this be done?

Last updated: Jul 27, 2020 07:40AM UTC | 1 Agent replies | 0 Community replies | How do I?

Can't open newly downloaded burpsuite on my kali linux

Picked up _JAVA_OPTIONS: -Dawt.useSystemAAFontSettings=on -Dswing.aatext=true WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by burp.oh...

Last updated: Jul 27, 2020 07:24AM UTC | 1 Agent replies | 0 Community replies | How do I?

Refund

Hello there, mailed to you too. Due to private causes, I want to refund the Burp Suite that I bought days ago. Not used more than 1-2 days. Thank you.

Last updated: Jul 27, 2020 07:14AM UTC | 1 Agent replies | 0 Community replies | How do I?

Why Burp is running get requests if any url is given without specifying its http method .

I have provided a url to burp to scan. Burp is blindly running get requests on that though it is intelligent enough to know which all http methods are allowed for that request.

Last updated: Jul 24, 2020 12:19PM UTC | 2 Agent replies | 1 Community replies | How do I?

Key-value storage

Hi, I need write custom extension to keep pairs from login request: login / auth-code from cookies. I think, that I can catch all login requests and after that write login credentials to the file. After that, I want to...

Last updated: Jul 24, 2020 11:39AM UTC | 2 Agent replies | 1 Community replies | How do I?

Burp Suite professional Trial

I am trying to register for burp suite trial but every time a popup shows and says "Company name required" even though I am filling company name. Please help in this.

Last updated: Jul 24, 2020 07:55AM UTC | 3 Agent replies | 5 Community replies | How do I?

Processing AES encrypted JSON paylaod

Hi, I am currently testing an API which has the following POST request in JSON format: { "Code1": "123", "Time": "2020-07-20 10:00:00", "Amount": 1, "List": [{ "Code2": "abc123", "Color":...

Last updated: Jul 24, 2020 06:48AM UTC | 2 Agent replies | 1 Community replies | How do I?

GraphQL queries to get all issues of the lastest successful scan on a site

Hi! I'm trying to use the new GraphQL API to pull issue data from scans performed by Burp Enterprise. I want to correlate issues to a Site via the latest scan performed on the Site. Through experience in the API, I've...

Last updated: Jul 23, 2020 03:13PM UTC | 2 Agent replies | 0 Community replies | How do I?

graphQL API

Hello, I maybe doing things the wrong way but I am trying to get all issues type of all scans with the API and the request below leads me to error 77 "Unexpected Graph Error". Any help available ? query getIssues { ...

Last updated: Jul 23, 2020 02:59PM UTC | 3 Agent replies | 1 Community replies | How do I?

Unable to start BurpSuite using powershell command in windows

I am using below command to start Burpsuite Start-Process "`"C:\Program Files\Java\jre1.8.0_201\bin\javaw.exe`"" -ArgumentList "-jar","-Xmx1G","`"C:\Program Files\BurpSuiteCommunity\burp-rest-api-2.1.0.jar`"","`"C:\Program...

Last updated: Jul 23, 2020 10:17AM UTC | 1 Agent replies | 0 Community replies | How do I?

Please confirm the tool support

HI, BurpSite Enterprise what are the below can be tested .. 1. Web side vulnerabilities 2. Android app scanning to find vulnerabilities 3. Server side testing vulnerabilities scanning. 4. Static code...

Last updated: Jul 23, 2020 09:39AM UTC | 1 Agent replies | 0 Community replies | How do I?

Requests showing -1 status and response length

Requests not returning any response after executing. When i installed logger++ , it shows me Requests showing -1 status and response length.

Last updated: Jul 23, 2020 09:29AM UTC | 2 Agent replies | 1 Community replies | How do I?

How do i add al subdomains to scope?

I have the domain test.com How can i add all the subdomains to the scope? *.test.com

Last updated: Jul 23, 2020 08:44AM UTC | 2 Agent replies | 2 Community replies | How do I?

How do i install my free trial - step by step procedure required

Stuck with wizard

Last updated: Jul 22, 2020 03:49PM UTC | 1 Agent replies | 0 Community replies | How do I?

unable to view to the solutions

i am unable to access the solutions tab in the labs

Last updated: Jul 22, 2020 10:44AM UTC | 1 Agent replies | 0 Community replies | How do I?

Severity Category

When the severity of a found vulnerability is classified as "information", what does it really mean? And also what is the degree of severity. Based on the other severity category it is obious a high is more severe than a...

Last updated: Jul 22, 2020 10:39AM UTC | 1 Agent replies | 0 Community replies | How do I?

Downloading Burp

Hi there, I already have the license key of Burp shared by my company. Can you share me the downloadable .exe of burp suite community edition? Where I can put the license key start working on the Burpsuite....

Last updated: Jul 22, 2020 10:07AM UTC | 1 Agent replies | 0 Community replies | How do I?

Unable to view solutions in Web Security Academy

Unable to view solutions in Web Security Academy, Drop down button is not working.

Last updated: Jul 22, 2020 09:32AM UTC | 1 Agent replies | 0 Community replies | How do I?

fitur solution cannot display on academy

fitur solution on academy cannot dispplay, and i can't open the solution

Last updated: Jul 22, 2020 09:27AM UTC | 1 Agent replies | 0 Community replies | How do I?

Page 4 of 124

Burp Suite Support Center

Your source for help and advice on all things Burp-related.

Burp Suite Support Center image