Research Academy
My account Customers About Blog Careers Legal Contact Resellers
The Burp Suite User Forum was discontinued on the 1st November 2024.

Burp Suite User Forum

For support requests, go to the Support Center. To discuss with other Burp users, head to our Discord page.

SUPPORT CENTER DISCORD

Is there a good write-up on using intercept vs proxy?

Carlos | Last updated: Nov 04, 2021 05:48PM UTC

Before I ever used Burp Suite, I installed Foxy Proxy and had no trouble seeing the HTTP history. I'm using the Community Edition on VirtualBox Kali. Then I watch a great Burp video (How to intercept HTTP requests and responses using Burp Suite) and my take away was that I didn't need to proxy any more, I would just use Intercept. Then I saw everyone proxying and got tired of webpages not loading, because Burp boots up defaulting to Intercept On. So I went back to using Foxy Proxy on my unbedded browser. Examining the Community Solution for Blind OS Command Injections, I see the guy is turning Intercept off and on (and is using Foxy Proxy) which got me confused. I know Intercept will hold the command until you Forward it or Drop it and I figured I was doing the logical equivalent with Repeater, but maybe there are cases where you must not send a command first because you can't resend it - like logging in (if you're not logged in and send the userID and pw, it works, but maybe if you're already logged in and send a userID and pw again, it won't work). I think it would be good to see a write-up go more in-depth about this. I did see support item https://forum.portswigger.net/thread/how-do-i-change-the-burp-browser-from-chromium-to-firefox-1bc75f16 which talks a little about this, but isn't obvious from the title.

Ben, PortSwigger Agent | Last updated: Nov 05, 2021 11:02AM UTC