How do I? - Page 91 - Burp Suite User Forum

submit solution doesn't work

I uploaded reverse shell but submit content file /home/carlos/secret is not accepted? Lab: https://portswigger.net/web-security/file-upload/lab-file-upload-remote-code-execution-via-polyglot-web-shell-upload

Privately Deployed Burp Collaborator - Failing Verify DNS Interaction

Hi, While the documentation is fairly verbose and helpful, I'm running into trouble with the Health Check for my private Burp Collaborator instance. ### The Error ### Burp Collaborator Health Check returns: Verify...

Is there API documention for Burp Suite Professional?

I was able to find APi documentation for Burp Suite Enterprise Edition- can I reference that doc for Burp Suite Professional as well? Or does Burp Suite Pro not have an API?

Link

How do create myn own link

OAuth labs

Hi, In the OAuth labs, when you refer to the OAuth service provider, this is equal to social media applications like linkedin, facebook, etc, ? If so, are labs with "Vulnerabilities in the OAuth service"...

No REPLAY issues when configuring the scan, but "Failed to replay sequence" during the scan

We have no issues when we REPLAY the script during the scan configuration. However, I get two error messages when I kick off the scan: #1 "Failed to replay sequence - timeout occurred while navigating to...

Expired Cert

Morning All, I need to replace an expired Cert for Enterprise Server, can anyone point me in the right direction to do so via the CLI (CentOS 7). I currently do not have access to the Web UI thanks in advance

Recording Macro- Support for popup windows , or multiple windows for authentication

Hello, I am attempting to record a login macro for a web application pentest. I have tried utilizing burp recorder extension for chrome, but seem to get the notification that popup windows are not supported when pasting...

browser not working after manual proxy setting

previously the burp worked. later i decided to use owasp zap too. And on configuring zap i failed. Then i tried to intercept burp but failed too. I deleted the portswigger CA and again tried to install it but the browser...

can't install burp suite certificate cacert.cer as an VPN and app user certificate in samsung m31s mobile

Greetings...! To perform Android application testing, i have done proxy setup in burp suite proxy -> options and proxy manual setup in mobile by connecting both to same wireless network. After that i have downloaded burp...

BurpSuite for Raspberry Pi4

I am trying to install Burp on my RPI 4 running Kali Linux but I am getting the following error when trying to run the .sh file downloaded from the website. I installed Java beforehand....

Testing Laravel and Inertia JS (Vue JS)

Hi. I'm trying to test the Laravel application written with VueJS and Inertia and I'm getting stuck with session handling. It's the app with almost all pages login-protected. First of all, I need to handle the 302...

Burp collaborator client

I don't find Burp collaborator client button!!! Where is this button?????

Intercept hash ('#') sign request

Hey team, I'm trying to intercept a request that is being sent in the following way - https://www.example.com/#test/Resource1/SubResource1/SubSubresouce1/ But since the endpoint starts with #, I can only intercept...

Exam and Pro license

Hi. I was wondering, if I have one account on which I have exam voucher, but no license, and different one with license for pro from work, will I be able to take the exam on the one without the license but with the voucher,...

Regarding the image with artefact’s captured as a vulnerability,

Dear Team, How do we obtain exact code snippets for identified vulnerabilities and detailed description for remdiation of identified vulnerabilities.

Burp exam

Session cookie retrieved for the administrator user, but it didn't work, and now the victim dosent send the cookie anymore when sending the same exploit. Can't pass the exam due to this, what a waste of money and time.

Regarding installation

Hi, if I buy a community version or enterprise version ? I will be getting both Mac version and windows version ? or you will be only providing product key which can be used in any version ?

Managing Professional Edition Licenses

Hi Team, We would like to know if there is any way of managing the Burpsuite Professional Licenses which were bought by us? Like, can we see in how many devices Burpsuite professional is installed and how many users are...

Unknown error in Firefox when searching something

I have configure Burp suite in kali Linux terminal.and JRE appears to be version 1.8.0-292 from openLogic.openJDK. First two days it was working very well but on third day when i started it in terminal with the command of...