Research Academy
My account Customers About Blog Careers Legal Contact Resellers
The Burp Suite User Forum was discontinued on the 1st November 2024.

Burp Suite User Forum

For support requests, go to the Support Center. To discuss with other Burp users, head to our Discord page.

SUPPORT CENTER DISCORD

Collaborator / broken IPv6 support

J | Last updated: May 14, 2024 05:48AM UTC

Because the public collaborator server still lacks support for IPv6, I built a custom one. All seemed to work OK, so I set about testing it. For this purpose I put a simple PHP script on a host which does a DNS lookup of whatever is supplied as a parameter: if (isset($_GET['dns'])) { header("Content-Type: text/plain"); $hostname = $_GET['dns']; if ($resolve=dns_get_record($hostname, DNS_AAAA)) { foreach ($resolve as $record) { print($record['ipv6'] ."\n"); } } } As you can see, it only does AAAA lookups and the host it runs on has IPv6-only connectivity. Running a scan against it using the public collaborator predictably returns nothing due to a lack of modern connectivity, but running it against the custom collaborator *should* have worked. Instead, I get the following result: The Collaborator server received a DNS lookup of type A for the domain name aiwknafxz6pi74uzg7gix1z6oxurih69u0knabz.c.MYDOMAIN. The lookup was received from IP address :36513 at 2024-May-13 18:26:34.429 UTC. So it fails to recognize the lookup type and incorrectly assumes it to be a legacy A lookup, and also fails to identify the source IP that the traffic came from.

Michelle, PortSwigger Agent | Last updated: May 14, 2024 11:06AM UTC