Research Academy
My account Customers About Blog Careers Legal Contact Resellers
The Burp Suite User Forum was discontinued on the 1st November 2024.

Burp Suite User Forum

For support requests, go to the Support Center. To discuss with other Burp users, head to our Discord page.

SUPPORT CENTER DISCORD

Enterprise edition and SPA pages

Ray | Last updated: Apr 13, 2021 09:37PM UTC

I have been seeing posts with Burp having issues with SPA pages. We use .net and angularjs for the SPA, will Burp handle this? So far on my trial it has been unsuccessful and some what disappointed. Are there methods of performing successful scans on SPA sites documented somewhere? Thanks Ray

Hannah, PortSwigger Agent | Last updated: Apr 14, 2021 08:35AM UTC

Hi Ray

SPA support is something that we're working on improving - you can check out our roadmap here

In the meantime, you may have better success using the embedded browser for navigation.

You can enable this by creating a new scan configuration, then setting "Crawling > Miscellaneous > Use embedded browser for crawl and audit" to "Yes". You can then add this scan configuration to your sites or scans.

If you are using the recorded login functionality for logging in to your target application, then your scan will already be using the embedded browser for crawling and auditing.

Ray | Last updated: Apr 14, 2021 02:29PM UTC

Morning Hannah, Thank you for the information. I'll give it a try. Thanks, Ray

Ray | Last updated: Apr 14, 2021 03:47PM UTC

Hannah, I tried as suggested and made sure the scan was using the new configuration but no difference. I check the scanned URL's in the report and I see a lot of this (Request Timeout). Host Path Issues Requests Insertions points https://testwebapps.utrgv.edu:443 /op/purch/reports/ 5 15 202 6 https://testwebapps.utrgv.edu:443 /op/purch/reports/App/app.constants.js 7 807 8

Hannah, PortSwigger Agent | Last updated: Apr 15, 2021 03:51PM UTC