How do I? - Page 5 - Burp Suite User Forum

Clickjacking with a frame buster script proving problematic

I have tried several browsers, and read other issues on the clickjacking labs. Despite having the email planted and the correct iframe attribute annnnnnd the "Click me" right on top of "Update Email" this one does not...

Extend activation license key

Hi, Just reach maximum activation license key. Now I get message "no more activation allow". Can you extend it ?

Lab: CSRF where token is duplicated in cookie. Invalid CSRF token error

Hello. I've been struggling to resolve a few CSRF challenges, as for example "CSRF token is simply duplicated in a cookie", I also had problem with "CSRF where token is tied to non-session cookie". When I click on "View...

Does Burp Enterprise Supports Vaults like hashicorp for DB connection string?

Hi Team, does burp enterprise supports storage of DB connection string (credentials) in vault? Currently it stores in plain text for Linux installation.

get a list of every endpoint after crawling a website

Hi to the community, This may be a basic question for some of you. Inside the 'Target' tab, I sometime use the 'Crawl Paths' functionality to discover the endpoints of a website. What I would like to have is a list of...

License issue

Dear support, due to features of my work I have to regularly reinstall virtual machines, so today I stucked on activating my BurpSuite Professional license, because of it’s limits. Please, can you refresh count of license...

LAB: Developing a custom gadget chain for Java deserialization

Dear PortSwigger team, First of all, thank you for the great content and learning materials. Indeed, there are no other platforms that even come close to the Web Security Academy's level when it comes to web...

Academy Progress Reset

Hello :) Can you please reset my progress on the labs and learning materials?

License Key

I needed to install the Blup Suit several time due to my virtual machine did not persistent de datas now I fix it but I can't log in the Burp Suit

Burp Suite Community Edition Error An unknown error occurred.

when i am on my first lab on authentication. i got username and password and just going to login, i got this error. this is on every page which i search on browser. what should i do?

using Burp Suite Professional using cli

Hi @team, I'm trying to use burp suite professional trail version through cli and using "java -Xmx1G -Djava.awt.headless=true -classpath burpsuite_pro.jar burp.StartBurp --unpause-spider-and-scanner...

HTTP "Host" header attack on Intruder is not working

Hi, I have send the request to Intruder and set the position on HOST: $ www.somthing.com $ & past the list of payloads and HIT "start attack" but after the attack, " HOST: www.somthing.com" value did not changed for...

BurpSuite In Ipad OS

Hi I just need to know does Burp Suite support only in Apple Mac or does it supports in ipad os products or any specific device of ipad. could you clarify my doubts

No more activations allowed for this license

Dear team, I'm facing the issue of "No more activation allowed for this license". Yesterday, after closing Burpsuite, it asked me to fill in the license key. Unfortunately I needed to fill in the license key more than...

Burp's browser / Renderer is not working. How do I fix this?

I ran a health check for Burp's Browser and I got the following error: Checking headless browser: Error Aborting checks due to errors. net.portswigger.browser.Zyg: No dev tools websocket output from local chromium...

SSL_ERROR_ILLEGAL_PARAMETER_ALERT

This error comes up "SSL_ERROR_ILLEGAL_PARAMETER_ALERT" when I am trying to access a website. I can access the website with no trouble when the burp proxy is not enable and if I add this website to the TLS Pass Through...

burteforce API endpoint that use encoding

Hello, i have request format like this POST /api/login HTTP/1.1 Host: www.domain.com Device_type: A X-Authorization: Authorization: Content-Type: multipart/form-data;...

Server-side pause-based request smuggling ISSUE

I run this POST /resources HTTP/1.1 Host: 0a2200f2043d4f71805fd09600be0071.web-security-academy.net Cookie: session=mAbLimPqmVB5vNGU7notqlDu7ZCsW8O4 Content-Type: application/x-www-form-urlencoded Content-Length:...

exam certificate for burp pro

Can I use the Burp pro trial version to the exam ?

How do i deactivate burp (single user license) license from one machine and activate in another

Hi, Unfortunatley i have installed and activated burp license in a wrong machine. I need to deactivate this license (which no longer using in this machine) and activate i another machine. Please suggest me the steps to...