Research Academy
My account Customers About Blog Careers Legal Contact Resellers

Burp Suite User Forum

Create new post

Burp scanner using websocket doesn't work with proxy

Gadi | Last updated: Mar 09, 2020 09:22AM UTC

By using BURP suit on my application , Burp blocks Web socket requests during proxy I configured local proxy on my browser and on Burp application Then tried login my application and starting capture –Web socket request get blocked and I get a face response – web socket server is down when really request didn’t go out it was blocked by proxy server. Following attempts were made to overcome the problem: • Changed proxy port for http & https • On proxy configuration – disabled parameter: “Strip sec-websocket-extensions headers in incoming requests” What I can do is to make some bypass over web socket and scanning without it – can you help me configuring something like that?

Ben, PortSwigger Agent | Last updated: Mar 09, 2020 11:33AM UTC

Hi Gadi, Are you able to provide us with some additional information about your setup: -What version of Burp are you using -What version of browser are you using There is an issue with using Websockets in Firefox versions 71 and 72 in conjunction with Burp (see the following https://bugzilla.mozilla.org/show_bug.cgi?id=1601871) but this appears to have been resolved in Firefox, Version 73.

Gadi | Last updated: Mar 12, 2020 06:09AM UTC

Burp ver. 2020.2 Firefox ver. 74.0

Ben, PortSwigger Agent | Last updated: Mar 12, 2020 09:47AM UTC

Hi Gadi, Within your proxy connection settings in Firefox, do you have the SOCKS Host field populated? If so, you will need to remove the settings configured in here. You should be able to test that you have a working configuration by going to the https://www.websocket.org/echo.html site and performing the Echo Test. If you are able to connect, send a websocket message and then see it appear in the Proxy -> WebSockets history tab within Burp then your configuration is good.

Gadi | Last updated: Mar 16, 2020 03:18PM UTC

I didn't configured any special configuration - just enabled my proxy on browser, but still doesn't work properly

Ben, PortSwigger Agent | Last updated: Mar 16, 2020 07:11PM UTC

Hi Gadi, Are you able to send an email to support@portswigger.net with screenshots of your Firefox proxy settings and Proxy -> Options screen? That way we can take a better look at your configuration

Gadi | Last updated: Mar 17, 2020 08:13AM UTC

Sent you as Zipora gottesman - Will be happy if U answer me ASAP, Thanks

Ben, PortSwigger Agent | Last updated: Mar 17, 2020 11:06AM UTC

Hi, We replied to your email yesterday so, if you need any further assistance, please get back to us either in this forum thread or via the email chain.

You must be an existing, logged-in customer to reply to a thread. Please email us for additional support.