Burp Suite User Forum

Create new post

Burp 2.0 beta has issues crawling BodgeIt

Seth | Last updated: Sep 07, 2018 07:21PM UTC

I was trying out the new crawl and audit features on BodgeIt (https://github.com/psiinon/bodgeit). I downloaded the WAR and ran it on Tomcat on port 8081. So BodgeIt is at http://localhost:8081/bodgeit/ I started the scan at: http://localhost:8081/bodgeit which does a 302 to http://localhost:80801/bodgeit/. Unfortunately something happens in the scanning that causes the responses to the pages Burp discovers to not return any data. I see some of the pages in the Target tab but there are no responses listed. I can send the same request in Repeater and get a response back though so something is happening there. I'm using Burp 2.0.04.

Liam, PortSwigger Agent | Last updated: Sep 10, 2018 02:05PM UTC

Thanks for this report Seth. We'll investigate and get back to you.

PortSwigger Agent | Last updated: Sep 13, 2018 04:21PM UTC

Can you please try this again using the configuration: Crawl Strategy - Most Complete The dynamic nature of the front page is a little confusing for the crawler but it covers the site with that option. In addition, the developers have made a few tweak to the crawler based on that site, which will be available in the next beta release.

Burp User | Last updated: Sep 14, 2018 05:10PM UTC

Ah that craw strategy does help thanks!

You must be an existing, logged-in customer to reply to a thread. Please email us for additional support.