Burp Suite User Forum

Create new post

Distribute Damage

Ben | Last updated: Aug 21, 2024 08:41PM UTC

I am trying to use this extension to rate limit all traffic. I have changed and tested multiple settings with no success. To verify even further, I checked "paused all traffic" just to see if it worked. Nothing has been successful so far. No issues or output in the extension logs. Please see my Distribute Damage settings below. Has anyone seen this issue of have any suggestions? Loaded distributeDamage v1.01 throttle: 10000 pause all traffic: true max param length: 30 scan params: false scan path start: false scan path end: false scan root folder: false scan other folders: false scan cookies: false scan headers: false target headers: "User-Agent,Referer" include content type in key: false header target mime types: "" header target status codes: "200"

Hannah, PortSwigger Agent | Last updated: Aug 22, 2024 09:03AM UTC

Hi Could you please tell me the version of Burp that you are experiencing this issue with?

Ben | Last updated: Aug 22, 2024 05:08PM UTC

Hi Hannah, Burp Pro v2024.6.6 - MacOS Interestingly, it works fine with the same settings on Windows 10.

Hannah, PortSwigger Agent | Last updated: Aug 23, 2024 09:47AM UTC

Thanks for that information! Are you on an intel-based Mac or Apple silicon? We'll see if we can replicate your issue.

Ben | Last updated: Aug 23, 2024 01:36PM UTC

This is an Apple silicon based Mac. 14-inch Macbook Pro M2.

Ben | Last updated: Aug 26, 2024 03:18PM UTC

Also, is there a way to completely reset Burp Suite to all defaults, reset/remove all settings, configs, licenses, etc. I would be interested to see if this has any effect.

Hannah, PortSwigger Agent | Last updated: Aug 27, 2024 03:59PM UTC

Is there particular traffic that you are finding Turbo Intruder is not throttling? I've tried this out on a running Intruder attack on MacOS, and it did successfully throttle the traffic. Probably the easiest way to reset your settings and configs is to go to "Help > Clean Burp from computer" and then delete your "~/.BurpSuite" folder.

Ben | Last updated: Aug 27, 2024 04:45PM UTC

There isn't anything specific. Currently, it's not throttling anything. For example, if I select "pause all traffic" in Distribute Damage, then no traffic should be allowed to pass through Burp Suite, and ideally nothing should work right? Yet, if I select "pause all traffic" everything works as normal and nothing is "paused". Does that help?

Hannah, PortSwigger Agent | Last updated: Aug 28, 2024 02:12PM UTC

I've had a chat with James, and a better name for "Pause all traffic" would be "Pause all automated traffic". This extension is mostly about avoiding rate limiting. Your Repeater and Proxy traffic shouldn't be triggering rate limits, so it's not included in the throttling. Looking at the code for Distribute Damage, the following tools are in the "THROTTLED_COMPONENTS" list: - IBurpExtenderCallbacks.TOOL_TARGET - IBurpExtenderCallbacks.TOOL_SPIDER - IBurpExtenderCallbacks.TOOL_SCANNER - IBurpExtenderCallbacks.TOOL_INTRUDER - IBurpExtenderCallbacks.TOOL_SEQUENCER - IBurpExtenderCallbacks.TOOL_EXTENDER You can find the full code for Distribute Damage here: https://github.com/PortSwigger/distribute-damage

You must be an existing, logged-in customer to reply to a thread. Please email us for additional support.