How do I? - Page 64 - Burp Suite User Forum

DOM Invader missing from Burp pro v2023.6.1(Early Adopter)

Hi, Anybody has an idea why DOM Invader is not present in embedded browser for Burp pro v2023.6.1(Early Adopter). In fact i found its not there for any even lower version early adopter as well.

Errors: Skipping phase P1. Too many consecutive "empty response" errors have occurred.

Hi, I am running a DAST scan using Burp Suite Professional v2023.5.3. I am faced with the following error, which appears for each request that is made (this error is seen in the "Extension driven active audit"...

burp suite starting

Why its saying your jre appears to be version 17.0.6 from debian burp has not been fully tested on this platform and you may experience problems whhile iam starting the burp suite kindly help me with the appropriate solution

Academy: CSRF labs #5 & #6 problem with solving

I have been working on the CSRF Labs and I'm having problem with the following labs: - Lab #5: CSRF where token is tied to non-session cookie - Lab #6: CSRF where token is duplicated in cookie issues And upon delivering...

View the crawler's outlinks

Hi there, Is it just me, or is the 'outlinks' tab that is described in the documentation missing from Burp Suite Professional v2023.5.4 (on Windows 10)? I'm referring to this...

Failed to send NOT_READY heartbeat

Installing or running Dastardly affirms your agreement to the Terms of Service https://portswigger.net/burp/dastardly/eula 2023-06-27 05:14:11 INFO dastardly.StartDastardly - Using Java version 17.0.4 2023-06-27...

How to prevent Burp Scan from making POST requests

Hello, In order to avoid any unwanted tampering when auditing a Web application, I would like to prevent Burp Scan from transforming my GET requests into POSTs when performing a scan. Which option should I modify to...

Exporting academy progress

Hello, I have two portswigger accounts, one personal and one for my work account. I'd like to export my academy progress from one account to another. Is this possible? Thanks

update burpsuite

Hello, just beginning and having problem to update burpsuite

Kali ARM64 | Apple M1 Parallels | Embedded Browser Not Found

Hey folks, I've been struggling with the following issue when attempting to start the burpsuite embedded browser. I've tried across fresh installs on Kali and various burpsuite jar versions going back to when the embedded...

Update Burpsuite version

Unable to do it from the Burpsuite tool.

Obtain someone else token on discord through a message

So I would like to know how to get someone else token in discord if they simply send me a message, I wanted to test it out on my 2 accounts but I could not figure out how to do so. e.g. I send someone a message saying "hi",...

How can we connect Selenium to Existing browser in Ruby Programming language?

I dont want to execute an automation script in another browser. I want to execute the script in existing browser. So, how can we do tha.

BurpSuite and Shebang in URL

How do i scan parameters in URLs after a shebang “#!” because BurpSuite doesn’t intercept the full URLs when a shebang is present. For example: https://www.example.com/examplefolder/#!/?number=737733892 BurpSuite...

Web shell upload via race condition

Hello everyone, I cannot solve Lab: Web shell upload via race condition, even though following "Solution" or any video solution. This is my configured in turbo intruder: def queueRequests(target, wordlists): engine =...

Burp jar not loading

Starting with 2022.12.2 I get this error when I try to start Burp. Running Ubuntu 20.04 and openjdk version "11.0.17" 2022-10-18 OpenJDK Runtime Environment (build 11.0.17+8-post-Ubuntu-1ubuntu220.04) OpenJDK 64-Bit...

Burpsuite License activation issue

I have a new Burpsuite license, I was able to successfully activate my license few days ago. But now its showing activation failed. Could you please help in getting this issue resolved?

Client-side desync

Hi, I'm a beginner, i found in one of my reports the client-side desync vulnerability, in "request 1" try to send a second request in the body, in "response 1" i find "405 method not allowed" referred to "post". Since...

I'm getting errors while using Burpsuite against the OWASP benchmark.

When running the Burp Suite scan against the OWASP benchmark, I am only receiving an "input retired in response" error, and I'm not getting any further results. I have tried to troubleshoot this problem, but I haven't been...

ACCESSING THE LAB USING HTTP

I want to access a lab using HTTP, is that possible? Currently I'm receiving below message "This lab is not accessible over HTTP"