Burp Suite User Forum
I have a problem with "no more activations allowed". Can I get assistance?
good day buddies pls i got a 403 every time i proxy true burp then check the request and discover that some additional poisonous headers is been added which makes waf to block the request pls any guide on how to fix this...
Hello PortSwigger i have a common problem with this product, and it's the same for the past few days "No response from remote server" I did as much research as possible i imported and installed the certificate and so on and...
Hi, Im a newbie and im doing the first few labs. Im doing the "SQL injection vulnerability allowing login bypass" in BURP Suite and have managed to resolve it but it is not setting it to 'Solved'. Im using The BURP...
The official solution includes instructions to create an iframe in the exploit server in which the src attribute points to the /oauth-linking... URL. However, the /oauth-linking response includes an X-Frame-Options:...
Hi Team, I wanted to if application have 2FA(login and OTP) how to configure Burp Enterprise for the same. I can only see authentication with simple username and password field to add in auth configuration in...
I'm unable to even start the lab (https://portswigger.net/web-security/clickjacking/lab-basic-csrf-protected). The provided credentials, carlos/montoya, do not work for me. Any ideas?
Hello, I'll try to keep this short and precise. Let's open lab "CORS vulnerability with trusted null origin" and use the provided solution on exploit server. Now let's try it in chrome. We log in, open the /exploit...
Hi team, I'm new with burpsuite, I have a problem it is that I cannot see the tab that shows the tabs "Raw", "Params", "Headers" and "Hex", but I have only "Pretty","Raw","\n","Action", how to fix it? Thank you.
Hi, I have configured LDAP and connection is successful. I have created same exact name as the corresponding groups on your LDAP server. I do not see any user is pulled in user list OR can able to logon. Am I missing...
I have a particular application which is using Event-Stream to bring commands from server regularly. While using with Application with Burp, Burp keeps on waiting for response for that particular event-stream, eventually...
When i do the post request of some sites, it shows No response received from remote server. I reinstalled the certificate and also trust from system.
Hello hackers I would like to add "insertion_point_name" into issue description, but there is no such variable or something like that. And is it possible to make bold text in description? I try <b> [b] * but looks...
Hi Team, We are attempting to intercept the traffic in order to conduct penetration testing on POS applications such as Oracle Xstore and Samba POS. However, we are currently unable to capture the traffic. Could you...
Greetings. So I have a tendency to listen to music while working, and I do it using Soundcloud. But using it on my browser really messes up my HTTP History with unnecessary traffic shown. Sure I can open it in incognito...
Hi, I can't Access the labs in portswigger. It takes me to a blog even I click the button and it won't load the lab. Please help.
Hi, I am trying to write a bcheck that will simply repeat the request but only if the request contains a specific parameter, for example, if the request contains a parameter named "repeat" then I would need to repeat this...
Hi, We have Zscaler proxy, I need support to understand how we can configure zscaler proxy settings in burp suite professional v2023.2.3. burp suite is not able to connect with internet.
We have Zscaler proxy which is not allowing to send parameter change request though burpsuite on testing website and getting error 403 Forbidden (request blocked by zscaler). Is there any way i can send request from...
Hello. Whenever I use Live Scan everything works perfectly. However, when I use New Scan, Burp Suite works for a few seconds and then populates the site map with a handful of urls. What am I doing wrong?
Page 6 of 307
Your source for help and advice on all things Burp-related.