How do I? - Page 92 - Burp Suite User Forum

Intercept curl cli

Hello, I am trying to intercept curl command on MacOS terminal and when I use export http_proxy=http://127.0.0.1:8080 it doesn't work. Are there any alternatives to export http_proxy=http://127.0.0.1:8080? Thank you.

Activation licence

Dear Team, I am unable to activate my additional license. Could you please support or clear the existing device? Also would be great if you could provide a list of already used devices. License Details: Aldar...

Configure scan to ignore multiple similar pages based on query string value

Hello all! I want to scan/audit a web application with thousand of products How can I scan/audit -only- one page and not the similar pages that may contain a different query string value? For example, let’s say...

Burp Suite Pro was not installed correctly

Hello, Trying to deploy Burp private collaborator on AWS and I receive the following error when trying to run this command: sudo ./install.sh my_domain.com email_address...

Regarding Burp tool update URL

We are getting network error while updating Burp profession tool. We would like to know the Burp update target URL to check with our IT team to unblock it from our network. Please do the needful

Send GET immediately after POST-Request

Hi, i wanted to check if there's a solution about automatically sending a defined GET-Request right after (some ms) initialing a POST-Request. I tried to use the intruder, mark the whole POST-Request §§ and then change...

Unable to access the labs.

Hi, I cannot start any of your labs. The page says "An error occurred. We apologise for the inconvenience ". Any help would be appreciated.

"XML parsing error"

Hi, I'm currently having problem on solving the "Blind XXE with out-of-band interaction" challenge. Sending to "Repeater" the POST request for the /product/stock endpoint and just changing the "productId" number with an...

Unable to access lab

Hi, I am trying to access labs but there is no response. I tried several time and every turn endup with Error "An error occurred, We oligopolies for the inconvenience. Please help.

Creating Folder using GraphQL Api

I'm having a trouble creating a folder using the graphql api, I'm using the following query : mutation CreateFolder($input: { "name": "Folder1", "parent_id": "0" }!) { create_folder(input: $input) { ...

External Service Interaction (DNS) not detected when using private collaborator

I have setup a private collaborator and the external service interactions are being reported in the Collaborator client. But "External Service Interaction (DNS)" is not being reported as an issue when the vulnerable target...

Lab seems it doesn't work

Hi, This following lab doesn't work as expected. https://portswigger.net/web-security/web-cache-poisoning/exploiting-implementation-flaws/lab-web-cache-poisoning-unkeyed-query In this lab the response is expected to...

BurpSuite Trial

Hello Guys, I just started with Web Security Academy training and labs and wanted to check which BurpSuite I can use for labs and is it available free for pracitce?

Scanning Hackazon

I'm trying to scan Hackazon application with Burp Suite enterprise. (I got demo account to test features of Burp Enterprise.) But as far as I see from the scan results, burp didn't detect/found any...

Web shell upload via race condition Lab

I have followed this lab instructions/solutions on a number of occasions, however every time i run the attack, all I get is 404 status and not 200. Is there a bug? Don't understand what I'm doing wrong here?

Unable to access the labs

Hi Team, I am getting error while trying to access the File upload Vuln labs. Also randomly check other topics, the issue is seen on OAuth Labs, Stored XSS Labs. Please let us know how long it will take to resolve...

When I click "access the lab", then the page shows error

The last normally "access the lab" was on May 27, but something went wrong this evening.I want to know when the error occurred and how long it will take to resolve it,thanks.

Lab: Routing-based SSRF

Hello, I've tried to solve this lab - Lab: Routing-based SSRF. When I try to brute the last octet in 192.168.0.0 ip I always get the 200 http response. I've checked it many times: Send Get / to intuder --> click the...

Lab: Exploiting HTTP request smuggling to capture other users' requests

Hi there, I tried to solve this lab by smuggling a request such as POST / HTTP/1.1 Host: ac4f1f861e1580afc0ad62b3000a0048.web-security-academy.net Content-Type: application/x-www-form-urlencoded Transfer-Encoding:...

Burp Suite Enterprise: There was a problem checking your license

Hello, We’ve migrated our BSE instance over to Azure (from AWS) but running into activation problems when linking the license. Could this be because we’ve got the previous setup still running (and activated) on...