The Burp Suite User Forum will be discontinued on the 1st November 2024.

Burp Suite User Forum

For support requests, go to the Support Centre. To discuss with other Burp users, head to our Discord page.

SUPPORT CENTRE DISCORD

Create new post

AWS S3 CP (Upload via HTTP PUT) Always Fails

Rodney | Last updated: Oct 29, 2024 09:59PM UTC

Burp is constantly modifying the request from the AWS CLI (SDK) where it removes the content and sets Content-Length: 0 (instead of the actual content-length). This results in the AWS S3 service return an HTTP 100 and HTTP 400 with "The Content-MD5 you specified did not match what we received." Burp Suite Professional v2024.9.3 (using Burp installer provided private JRE) Ubuntu 22.04 aws-cli/2.18.17 Python/3.12.6 Linux/6.8.0-45-generic exe/x86_64.ubuntu.22 ``` export https_proxy=http://localhost:8080 aws s3 cp --no-verify-ssl /etc/os-release s3://mybucket-2024-10-29 ``` Also attempted changing Proxy Settings All intercept (request or response) turned off Unchecked all "Response modification rules" "Miscellaneous" Unchecked all options except Use keep-alive for HTTP/1 if the server supports it Also attempted unchecking every "Miscellaneous" option. Also verified that 0 extensions were installed. Workarounds: Use of mitmproxy worked just fine to capture HTTP PUT requests from AWS S3 upload commands. Setting TLS passthrough for all .s3. URLs allows the aws s3 cp CLI to work, but the request cannot be seen in Burp.

Michelle, PortSwigger Agent | Last updated: Oct 30, 2024 10:08AM UTC

Hi Thanks for getting in touch. So we can look into this in more detail, could you please email support@portswigger.net with the output from Help > diagnostics for your installation of Burp? Would you also be able to share some screenshots of the requests and responses you see in Burp's Proxy History and Logger tabs (including the details shown in the Inspector panel) and a copy of what the look like if you connect directly/via mitmproxy?

You must be an existing, logged-in customer to reply to a thread. Please email us for additional support.