How do I? - Page 81 - Burp Suite User Forum

Labs

Hello, your labs are taking long to load and not even working. Are you doing some system maintenance at the moment?

Hello I have this problem: when I send the request from the browser, the request is successful, but when I send the request again with the repreater, it gives me an error, the problem is the 2 parameters "nonce_str" and...

How do I change the Port for LDAP login?

I just got an email about Burp Suite Enterprise not be being configured properly. The email said: the service account for Burp Suite is showing up on our reports for accounts authenticating to Active Directory with...

BurpSuite SSO integration with LDAPS

Hi Team, As per the given documentation, we are able to connect to LDAPS successfully. Now, we have to configure the group on the Burpsuite enterprise, for that can you please provide the step by step instruction on...

Can't see User Options Tab in Menu Bar!

Hi,I'm using Burp Suite Community Edition 2023.1.2 . I'm not able to see User Options Tab in Top Menu Bar. Based on some courses and screenshots of previous versions, I could see User Options Tab in the Menu Bar. Is there...

java.util.ConcurrentModificationException while automating

Hi, I am trying to replay every requests in proxyhistory and modify headers and makeHTTPRequest and compare the requests. while I do this, I am getting this ConcurrentModification Exception error. I believe this happens...

Automatic Tools

Can Burp Suite's vulnerability scanner and/or intruder cause a disruption of service?

Burp been blocked by CloudFlare

Hi. I've tried a lot of things but I can't use Burp to intercept request in some sites behind CloudFlare. Change use agent not work anymore. I've read about that and seems the CF is using something like this...

How to make customized template for burpsuite reports

I want to customize the default template of burpsuite .I want to add my company name logo and some other details how can I do this in burpsuite professional version

BurpSuite Error: failed to negotiate an SSL connection

Hi, I've got a problem with Burp Suite Proxy v 1.6.30 and Android 5.1.1 Tablet. It works great with Windows 10 and installed java version 1.8.0_60-b27. But i have to set up a vm for a seminar with a linux os. I've...

Exploiting blind SQL injection using out-of-band (OAST) techniques

Can i solve this academy task with community edition? Is Community edition allow me to solve unlimit academy task manually specially in portswigger?

Web Components and Shadow DOM

Does burp login recorder and/or crawler support applications based on web components and shadow DOM? Will crawler find elements under shadow-root and scan them?

Regarding trail license key for burp suite enterprise edition

Hi, Completed my registration and installation as per your guidance till I didn't get any license key for the trail version. It's not available in my portswigger.net account, where i can download it and when it will...

Lab: OAuth account hijacking via redirect_uri

As in the lab, we can exploit the redirect_ui vulnerability by using the exploit server. I was wondering if you could help me understand how someone could exploit the redirect URI vulnerability in OAuth without knowing a...

How do i let the scanner know, there is a login page

Hello Support, When i running a scan with BurpSuite Enterprise, i get this error. DEBUG,"Did not find a login form","April 23 2020 at 06:45:10","1" But the loginpage is included and also the applicationlogin. The...

Avoid scanning subdirectory

Hello, I am trying to scan a website http://www.example.com/ and there is a subdirectory http://www.example.com/subdir/ that I would like to avoid because it's big and slows the crawling. How can I configure Burp to do...

BurpSuite Professional - Error No Supported CertificateVerify signature algorithm for RSA key

Hello I am having an issue when attempting to use my HardToken (CAC) certificates in tandem with burpsuite. I provide the certificates via Project Options > TLS > Client TLS Certificates > Override user options and inputting...

JAVA Insecure deserialization and ysoserial

Hello everyone, ysoserial does not work after openjdk17. How can I get around this and pass the labs?

Why burp suite has not worked with the lasted version of LDPlayer?

Hi, I have installed and tried both version of LDPlayer 3.117 and 4.0.56 with the same config to track the post and get requests from apps. Problems is when I tried version 4.0.56 nothing happened in the tab Target > tab...

Can we run the Active Scan through command line without installing the Burp Suite in my device.

Hi, I want to run the Active scan for the particular website, just by command line arguments, without having the burpsuite installed in my device. previously what I searched for the solution , its all connected with...