How do I? - Page 86 - Burp Suite User Forum

CORS vulnerability with basic origin reflection

I to solve the stated lab above using the written solution.this is what it ends up showing in the accesslog "log?key=%22Resource%20not%20found%20-%20Academy%20Exploit%20Server%22"

Burp Suite Professional on Kubernetes

Hi We recently bought license for "Burp Suite Professional". Is it possible to deploy "Burp Suite Professional on Kubernetes" ? I searched lot of documents (For example...

BURP not working with IOS 14.4

upgrade ipad to 14.4 and unable to capture any traffic in burp.unable to download certification in safari or chrome .all setting are checked no problem with any setting.tried with latest burp prof 2020.12.1 and with java 14

How does "onpopstate" not require any user interaction?

From the XSS cheat sheet, the payload below is listed as not requiring user interaction, but I cannot for the life of me get this to trigger without user interaction. Is this really something that can be triggered without...

burp browser not opening and high severity vulnerabilities showing as informational

Hi Team, We have purchased Burp professional tool: I had few queries: 1) I am trying to open the burp embedded browser, but I get below error> what to do to resolve this issue?? 2) I have scanned my...

Exploit server

Can burp collaborator replace the exploit server in real life

Unable To Render Response

Hello, I get the message "Unable to render response" or "Embedded browser initialization failed" when viewing the Render tab. I've tried running as root and a regular user. As a regular user, the embedded browser health...

Burp Suite pro update without the internet

Hello :) Like the title, Is there any way to update the Burp Suite Pro without the internet? I have two computers one seperated by the internet due to the security reason and one with the internet, but computer with no...

want to Cancel my Burp Suite professional Licences

Hi Team, Recently My Burp Suite Professional Licences was renewal,due to autonewal setting,can I cancel this Licences and get refund ??

update Burp Professional to new version

Hi I am unable to update burp pro to new version. `please guide me.

Burp suite Professional key needed

Hi team, Actually i changed my pc Configuration so, Burpsuite Pro got deleted. So , i need assistance from you.

error in android app

Hello everyone, I recently installed the burpsuite certificate for android and everything works correctly in the browser and most applications,unfortunately some applications do not work when I put the proxy that connects to...

How do I see what learning material I have completed?

I use the academy on and off as I have a busy schedule and it is for personal learning and does not correlate to my job/career. Is there a way to see where I left off the last time I logged in? It would be nice if I could...

Burp Not Loading, No Error Messages

I have Burp Suite Pro on my system (Win 10). It was previously working just fine, but now today it fails to load. I don't get any error messages, nor is there anything in the event viewer. Just doesn't do anything after I...

Academy || lab-password-reset-poisoning-via-middleware

Hi, I notices that no Forward header or other related headers showed in the solution works for me. Also the Youtube video is mutch different then what is in the lab. NO CSRF token is in place for example. What I'm...

A lab is not solved by its own written solution

The lab "HTTP request smuggling, basic TE.CL vulnerability" cannot be solved by its own written solution.

Burp Suite Blurred on Windows

If you are using a high-DPI display, try disabling DPI scaling for Burp Suite. To do this, right-click on the Burp Suite shortcut, go to Properties, and then click the Compatibility tab. From here, you can check the...

Lab: CORS vulnerability with internal network pivot attack

I'm having a hard time connecting the CORS vulnerability for this lab. Initially I was thinking that after finding the intranet, the goal would've been to implement some kind of xss back on the shop site, e.g....

reset a lab

can you reset my "Reflected XSS into HTML context with all tags blocked except custom ones lab https://portswigger.net/web-security/cross-site-scripting/contexts/lab-html-context-with-all-standard-tags-blocked

Actication Failed

Hello. When reinstalling Burp Suite Professional, the following message is displayed when entering the license key. "No more activations allowed for this license." Please support us.