How do I? - Page 75 - Burp Suite User Forum

I was scanning a larger site with Dastardly extension and got timeout exceeded

Is there a way to override how long a scan can run with Dastardly? Steve

How do I disable tab seperator when selecting text?

Hi there, this one is a bit hard to describe. When selecting text or clicking into the text when using e.g., repeater the UI automatically adds spacing for better readability. For...

BSCP Exam - Linux host

Hello, Even though it is stated that Linux isn't supported by the proctoring platform, would there be any issue by identifying in a Windows VM and doing the rest of the exam in a Linux host? Provided that no issues arise...

NTLM authentication brute force

I want to conduct a brute force attack on a NTLM app authentication login form. For some reason I a not intercepting the login requests. How do I intercept the login requests? I have noticed that when people ask...

Please reset my all learning and lab progress

Can you please reset my all learning and lab progresses?

To get a refund

Hi, As we are not using Burpsuite for a long ago, and it was auto-debited, it's our humble requesting to provide a refund for the same.

Http Request for Fake Shopping Site

I went via labs, using the built in Chronium Proxy, some how when on the page when I followed the link https://portswigger.net/burp/documentation/desktop/getting-started/modifying-http-requests.. the page does not load or...

DOM based Link Manipulation false positive

Portswigger, We currently use the enterprise version of burpsuite, currently we have a method of determining if DOM based Link manipulation are false positives or not, we would like to receive some feedback from a...

Mobile traffic intercepting in Burp suite 2023.2.3

New burp is not intercepting any request from mobile, where older version of burp are able to do so.

burp suit version is outdated

i could not open burpsuit on kali linus because it is updated, plese how do i update burpsuit on kali linux

Burp project sitemap export/import

Hi, I am having a burp project created for an application and for an environment. I have the sitemap created in it. I want to create another project with a sitemap for the same application but different environment. How...

OWASP Top 10

Hi, Quick question, I am trying to identify when performing a scan against a site if the OWASP Top 10 are inclusive in the scan against the target or if there is additional configurations when setting up the job?...

CA Certificate Webpage Is Not Loading in iOS Mobile Device (iOS Version 16.1.2, iPhone 8+)

Hi All, I am trying to intercept the request from iOS mobile to Burp Suite Community Edition. I have followed all the steps from the official website and also gone through a few youtube videos, but still I am finding it...

Academy - SQLi - querying DB type and version on MySQL and Microsoft

This lab seems to be not working. To be clear, it results in "Internal server error" even if I inject 'ORDER BY 1# Tried the solutions from the lab too, did not work. Help me out here.

Test a REST API

Hi Team simple question how to test rest API in burp.There is any way step how to test it in Burp.?

Default startup tab on opening burp

Hi, 1) I want to select a default tab for example proxy->HTTP history every time I open BURP. How do I configure this default tab? 2) In Repeater tab when I want to see request in browser is there a way to automate it...

Burp license activation reset

Evening, Hope do I go about resetting the burp activation count as the VM I have been using in parallels was rolled back twice now due to crash issues and I can now on longer activate my license that I purchased in April...

Burp Suite logo not shown in Burp browser

Anyone know why the Burp suite logo is not available in the top right corner in my Burp browser as mentioned here https://portswigger.net/burp/documentation/desktop/tools/dom-invader/settings? Picture:...

HTTP request smuggling, confirming a TE.CL vulnerability via differential responses

i am on the lab trying to understand how this request happens to work and when i change anything from the payload it returns 'HTTP/1.1 400 Bad Request' even the length of the byte, from Content-length: 4 to Content-length: 5...

saving burp items in xml format leads to base64 encoded request and response header

Hi portswigger team! Whenever I saved the burp items in xml format it has base64 encoded request and response header by default...what could I do to save the items as it is!!