Research Academy
My account Customers About Blog Careers Legal Contact Resellers

Burp Suite User Forum

Create new post

How do i generate PEM certificate

dilevey618 | Last updated: Dec 08, 2020 01:57PM UTC

I am currently integrating burp in azure pipeline. Where can i get the pem file.

Ben, PortSwigger Agent | Last updated: Dec 08, 2020 02:26PM UTC

Hi, Just to clarify, are you using Burp Professional or Burp Enterprise?

dilevey618 | Last updated: Dec 09, 2020 05:44AM UTC

I am using burp professional. Can i know JSON syntax for running active scan from Azure pipeline.

Uthman, PortSwigger Agent | Last updated: Dec 09, 2020 08:47AM UTC

The PEM file can be an arbitrary file with a .pem extension. It is currently required to run the CI driver but we are working on making this non-compulsory. An example of how you can run the CI driver is: echo BURP_SCAN_URL=https://www.test.com | java -jar burp-ci-driver-1.0.7beta.jar http://localhost:1337/api/<api_key> --self-signed-cert=BurpSuiteCert.pem Our Professional product is really not designed for CI integration due to the nature of project files. Have you checked out Burp Enterprise? We offer a free 30-day trial and you have access to 2 APIs (REST and GraphQL) that provide a wide range of features: - https://portswigger.net/burp/documentation/enterprise - https://portswigger.net/burp/enterprise/trial - https://portswigger.net/burp/documentation/enterprise/api-reference - https://portswigger.net/burp/extender/ci-integration

dilevey618 | Last updated: Dec 09, 2020 09:50AM UTC

Ya. i am working on Enterprise also. But due to client is having professional license. We need to currently using professional and we need integration through pro. only. What will be the command to run active scan thru pro from pipeline.

Uthman, PortSwigger Agent | Last updated: Dec 09, 2020 09:51AM UTC

You can't run an active scan. You can only run a full crawl and audit via the API (using the command above).

You must be an existing, logged-in customer to reply to a thread. Please email us for additional support.