Research Academy
My account Customers About Blog Careers Legal Contact Resellers
The Burp Suite User Forum was discontinued on the 1st November 2024.

Burp Suite User Forum

For support requests, go to the Support Center. To discuss with other Burp users, head to our Discord page.

SUPPORT CENTER DISCORD

Issue type Certain , confirm and tentative( what does this mean )

Sukhwinder | Last updated: Jun 18, 2021 02:24PM UTC

Issue type Certain , confirm and tentative( what does this mean ) Confirm mean sure, no false-positive Certain mean sure, no false-positive tentative means not sure there may be the false postive I could not understand that , can anyone elaborate it deeply

Hannah, PortSwigger Agent | Last updated: Jun 21, 2021 03:07PM UTC

Hi

These Confidence ratings are defined in the following ways:
  • Certain: The issue is definitely present.
  • Firm: The issue is probably present, but this could be a false positive.
  • Tentative: The issue is potentially present but there is a high chance that this could be a false positive.

Please let us know if you need any further assistance.

Sukhwinder | Last updated: Jul 13, 2021 06:38AM UTC

what is the logic behind this. How our system(burp)knows that this issue is definitely present and that can be false postive

Hannah, PortSwigger Agent | Last updated: Jul 15, 2021 05:25PM UTC

Hi Some scan checks can be more temperamental than others. For example, part of an HTTP request smuggling attack relies on Burp receiving two consecutive responses to be Certain that the vulnerability is present (https://portswigger.net/web-security/request-smuggling). If Burp doesn't have definitive evidence that the payload it has used has succeeded, then that will decrease the confidence rating, and increase the likelihood of a false positive.

Anthony | Last updated: Feb 11, 2022 07:24PM UTC

Yes false positives are a pain.

Anthony | Last updated: Jun 17, 2022 02:21PM UTC