Burp Suite User Forum

Login to post

Does Burp Enterprise support Manual URL other than defining scope

Vaidehi | Last updated: Jul 30, 2020 07:28PM UTC

Hi Team, My requirements are: Run Selenium Scripts in Jenkins (which will crawl though URLs) Burp will be in proxy mode listening to all the URLs Burp will generate the report and then integrate that with Jira My questions are: 1. Can Burp enterprise take URLs through that because I see that in the Scan definition we can specify the scope but we need to feed the urls generated by the Jenkins job to Burp. 2. Does Burp enterprise generate report in XMl or html or it is just JSON. 3. Is there a way to integrate Burp enterprise to Jira. Thank you so much in advance. I look forward to hearing from you. Best, Vaidehi

Michelle, PortSwigger Agent | Last updated: Jul 31, 2020 11:03AM UTC

Hi Vaidehi Thanks for getting in touch. Burp Suite Enterprise does not proxy connection in the way that Burp Suite Professional does, so in the scenario you describe, you would not be able to have Burp Suite Entperise listening for the connections Jenkins is crawling through. The good news is though, that scanning APIs automatically is on our roadmap. This feature will allow you to use Burp Suite Enterprise to automatically scan APIs based on standard service definitions, including OpenAPI/Swagger. You can then use the existing integration with Jenkins and Jira. You can read more about the roadmap here: https://portswigger.net/blog/burp-suite-roadmap-update-july-2020 If you would like and you're happy to share the swagger file you're using via email (support@portswigger.net) I can pass this on to our developers who are working on the new feature so they can see the kind of scans you will need to do and the files you are using.

You need to Log in to post a reply. Or register here, for free.