Research Academy
My account Customers About Blog Careers Legal Contact Resellers
The Burp Suite User Forum was discontinued on the 1st November 2024.

Burp Suite User Forum

For support requests, go to the Support Center. To discuss with other Burp users, head to our Discord page.

SUPPORT CENTER DISCORD

ENTERPRISE: When I setup Site Scope and a custom scan config, BURP makes a NEW site on build instead of my setup one

Todd | Last updated: Jun 26, 2023 07:02PM UTC

I kick off a burp (enterprise) scan from github anytime we do a new build to one of our solutions. Things have worked fine BUT I needed to change the site scope and use a custom config to control the speed and number of requests. HOWEVER now, when it kicks off a build, rather that use the site it always has used, it is making a new one. IE - Where I used to have dev-accounts-mysite.com in my list now I have that AND dev-accounts-mysite.com 2 and when I tried setting the scope and config on that one I got a 3rd site. Basically it just wont use the site I setup with my custom settings.

Maia, PortSwigger Agent | Last updated: Jun 27, 2023 10:04AM UTC

Thank you for your message. Changing the site scope will have caused the new site to be created as it no longer matches the original. You can find the site-matching rules we use to determine when a new site should be created in the link below: https://portswigger.net/burp/documentation/enterprise/reference/site-and-scan-data-settings You can use the GraphQL API to update the site scope (and scan configurations) beforehand if required: https://portswigger.net/burp/extensibility/enterprise/graphql-api/update_site_scope.html https://portswigger.net/burp/extensibility/enterprise/graphql-api/update_site_scan_configurations.html

Todd | Last updated: Jun 29, 2023 03:13PM UTC

So we kick off our burp scans in an action like this - name: Launch Burp Scan id: burp_scan continue-on-error: true run: curl --location --request POST 'https://burp.pathback.org:8080/api/**key**/v0.1/scan' --header 'Content-Type:application/json' --data-raw '{"urls":["https://dev-service.site1.org/swagger/v1/swagger.json"]}' I am not sure how I would be able to change the scope of the site we are ABOUT to scan and if I change it before we scan, won't we still have the same problem where it will then just create a new site?

Maia, PortSwigger Agent | Last updated: Jun 29, 2023 03:29PM UTC

As you are running a Burp Scan and only supplying the site URL, the only thing we can match on is the URL. Because this changes, no match is found and create a new site. You could run a site-driven scan instead, but the URL would need to match or be changed beforehand. Your curl command uses the REST API, but the GraphQL API will be more flexible for you in this case allowing you to change the site URLs and then schedule a scan against the site ID. https://portswigger.net/burp/documentation/enterprise/api-documentation/graphql-api

Todd | Last updated: Jun 29, 2023 06:06PM UTC