How do I? - Page 55 - Burp Suite User Forum

Reset my progress on the labs and learning material.

Hello :) Can you please reset my progress on the labs and learning materials?

Getting Errors while executing Testcafe script through Burp Tool

Automated Testcafe Scripts are working absolute fine when executing without Burp tool but when executing scripts through Burp tool, we are getting several issues in our script like; Internal Server Error, Undefined error and...

Nested parameter Entities (XXE labs)

Hi, I have a question about the parameters entites used in the Lab: Exploiting blind XXE to exfiltrate data using a malicious external DTD : (1) <!ENTITY % file SYSTEM "file:///etc/hostname"> (2) <!ENTITY % eval...

Retry requests in Intruder

Hi, Lets say I am running intruder (for some payload) and if there is failed response (500, 401 etc), I want to retry the request a few times with the same payload before abandoning that and moving ahead with the next...

Burp Suite identifying vulnerabilities with Zoominfo running in app

Has anyone had experience with running the Burp Suite scans where vulnerabilities can be detected for the ZoomInfo external app while the ZoomInfo tool is integrated with the app/url?

Base64 encode adds "%3d" at the end of the encoded string

Hi, I am using the Intruder for brute-force attack. I am also using the payload processing to encode the credentials with Base64. The problem is that a %3d is being added at the end of the encoded string, and this is causing...

Authenticated vulnerability scans

Hi, my question regards authenticated vulnerability scans. Can you please confirm if, by navigating to the website through the proxy browser and doing the manual authentication, and then starting a scan on that website...

Burp Collaborator not working

I try to practice Blind Command Injection with OOB. But when I nslookup to Burp Collaborator like: c1edwsqnaole5654kxj12g8ga7g04p.oastify.com It is not response, I pressed "Poll now" many times. How can I do to fix it

Exclude URLs

Can I specify a regex to exclude some URLs from scanning?

Record 4xx requests

Hello, I'm playing around with BURP in proxy mode and noticed it does not record requests that gets a 4xx reponse (404, 401, ...). When I check the scope, I see all requets made towards a host except 4xx I couldn't find...

ysoserial stopped working

Hello. I already completed the lab "Exploiting Java deserialization with Apache Commons" weeks ago and now I wanted to do it again but it doesn't work because I get a java error when I execute ysoserial. Maybe it's...

Flow control limit exceed

HTTP/2 stream error on flow control limit exceed

Disconnected from examity

Hello; While doing my exam i got Disconnected from examity and they refused to restart the proctoring session. " As per our records we see that exam has already processed and you cannot continue with same appointment. We...

How to increase the amount of RAM used by burpsuite

Hello team, I am currently using the standalone JAR file of Burp Suite and I'to optimize its performance by increasing the allocated amount of RAM. any way to increase the RAM size? Thanks

No more activations allowed for this license

Hi, Support manager. I have to activate my burp pro, but I can't. I did it may by 6 or 7 times because of different virtuals and systems, for example arch was crashed or it was necessary for work, 1 project = 1 virtual. Can...

Burpsuite Scan using command line

Hi, I would like to bring up BURP using command line (without any GUI) for automation. I want to fill in options such as --domain, --proxy (authentication required), --concurrency,... where should I handle it? Thanks...

Continue the scan after it has errored out in specific phase.

Hi, My scan errored out with the reason "Errors: skipping phase A2. Too many ..." I fixed the issue and I want the scan to continue from where it left off. That is, from A2 phase instead of starting from scratch. But I do...

How can I scan via Burp Pro API /scan with authentication script

I am using BurpSuite Professional in run in headless mode on my server. I also load user config to BurpSuite and open API runs on http://localhost:1337. When I create a scan via API /scan, in field "applications_login", I...

Enable email notification for forum replies

I do not get any email notification for replies on my forum posts. I have to come back periodically and monitor the threads myself. Is there any way to enable email notification for forum replies?

How do I mark a document as complete

I cant find the box anywhere, nor with a search or visually, how can i mark a document as being read ?