How do I? - Page 9 - Burp Suite User Forum

Chromium

Hello. I am having a problem with the Chromium after clicking "Open Browser" the website I searched in it is not loading and showing nothing. There are no problems with the device and internet connection because I can...

Burp activation licenses

I am currently allowed to use burp license in three machines. And I want to deactivate the burp license in one machine and activate in another machine. I deactivated the burp license in one machine but when I try to activate...

Possible Error in Lab: Exploiting path mapping for web cache deception

After going through the outlined steps, the API key for carlos is not included in the response

New lab: Exploiting HTTP request smuggling to capture other users' requests

Hi and sorry for bothering again. I am not able to complete the lab in the subject after following the lab solution. As far as I understand, there should be "another user" accessing the blog comments page, whose session...

Exploiting clickjacking vulnerability to trigger DOM-based XSS

I successfully run the script with the code below, but it doesn't show "Solved". why? <style> iframe { position:relative; width:1000px; height: 1000px; opacity: 0.0001; z-index: 2; } div...

Burp Browser Not Working

Health check for burp's browser gives "Checking headless browser error" The message below is: Aborting checks due to errors net.portswigger.browser.Zdv: No dev tools websocketoutput from local chromium process...

lab not solved although i did

i solved the last practitioner xss lab using this payload <script> window.addEventListener('DOMContentLoaded',function(){ var token = document.getElementsByNameBy('csrf')[0].value; var data = new...

All Labs very slow today

Hi, Are you having some issue today ? I've tried a lot of labs and each of them are incredibly slow to respond.

Help with H2.CL request smuggling lab

I am attempting to solve the "H2.CL request smuggling" lab. I verified that I can trigger the JavaScript alert when I simulate a victim user myself (e.g. I visit the home page in a separate session, then send the malicious...

Customize Collaborator on Active Scanner

Hi Team, is it possible to change the Collaborator URL to another URL to use in Active Scans? Thank you

SameSite Strict bypass via client-side redirect

Hello! I'm trying to solve this lab from the CSRF topic and I'm struggling to finished. I'm stuck on the last step "sending exploit to victim" I have follow every step from the solution and try the exploit myself and...

Lab of Reflected XSS not solving

solving the lab of "Lab: Reflected XSS into a JavaScript string with angle brackets and double quotes HTML-encoded and single quotes escaped"...

Labs and Learning Material Reset

Hi all, Hope you are doing well. Could you please reset my learning materials as well as my Labs? Thank You.

Burp browser not working

Hi, I can't open the Burp browser since I installed Ubuntu 24.04. I'm sending a screenshot Hello, I can't open the Burp browser since I installed Ubuntu 24.04. This message appears: Checking headless browser Error...

about Exploiting NoSQL operator injection to extract unknown fields

"I was working through a NoSQL injection lab on...

Burp Pro not installing on Kali Linux arm64

I downloaded the arm64 installer from the website. I ran chmod+x and am getting this error message: burpsuite_pro_linux_arm64_v2024_7_5.sh: 653: /usr/java/burpsuite_pro_linux_arm64_v2024_7_5.sh.17291.dir/jre/bin/java:...

BChecks --how to upload form github

Hi Team I have some problem upload new change to burp BChecks from Gihub. My step copy all from github https://github.com/PortSwigger/BChecks/archive/refs/heads/main.zip .Then unzip all .And then I went to Burp next...

installation in kali linux

I can't install burp pro in kali linux, you could kindly tell me step by step how to proceed thanks

Reset Progress

I want to reset all learning and labs progress.

Burp task execution engine paused

I am using the below command to start my burp pro instance. Everytime I launch it burp launches with task execution paused. Is there a way to enable it by default? command: java -jar burp.jar...