Research Academy
My account Customers About Blog Careers Legal Contact Resellers
The Burp Suite User Forum was discontinued on the 1st November 2024.

Burp Suite User Forum

For support requests, go to the Support Center. To discuss with other Burp users, head to our Discord page.

SUPPORT CENTER DISCORD

Problem during crawling in authentication

Naman | Last updated: Nov 10, 2021 08:22AM UTC

Hi, during crawling process in burp suite in authentication process in it is showing error: Failed to find additional rooms after recorded sequence: sequence_name'. I am using sequence recorder to authenticate. Although it is showing that the page is being authenticated which is visible in its embedded browser, I wonder why this error is coming or is it causing any hindrance in the final result or that the final result is lacking somethings due to this. Please look it into this and try to resolve and I will be obliged. Link to screenshot - https://drive.google.com/file/d/1D0bTv5z9ejtSuqk-Io6Ayj3aC9RCH4lV/view?usp=sharing

Liam, PortSwigger Agent | Last updated: Nov 10, 2021 08:52AM UTC

Thanks for your message, Naman. Which version of Burp Suite are you using? Is the application JavaScript-heavy?

Naman | Last updated: Nov 10, 2021 09:21AM UTC

Thanks for the reply So our burp suite version is 2021.9.1 and yes the application is javascript heavy

Naman | Last updated: Nov 10, 2021 09:21AM UTC

Thanks for the reply So our burp suite version is 2021.9.1 and yes the application is javascript heavy

Liam, PortSwigger Agent | Last updated: Nov 10, 2021 09:41AM UTC

We have made some improvements to how the Crawler handles JavaScript-heavy / SPAs. We have some further work planned. Is the application publicly accessible? If so, could we perform some remote testing?

Naman | Last updated: Nov 10, 2021 10:19AM UTC

Sorry but the application is not accessible publicly. So does it affect the final result of the scan?

Liam, PortSwigger Agent | Last updated: Nov 10, 2021 10:38AM UTC

That depends, do you see this error with every scan of this application? Or, is it a one-off?

Naman | Last updated: Nov 10, 2021 11:57AM UTC

The error is visible in almost all the links. We are feeding various subdomains of a web application and along with that sequence through entry point for login purpose. Let me share the config settings for the scan - https://drive.google.com/drive/folders/113JGN_Xe_KZT4X5Qu3v-iDX1Mc6LOdtf?usp=sharing

Naman | Last updated: Nov 10, 2021 11:57AM UTC

The error is visible in almost all the links. We are feeding various subdomains of a web application and along with that sequence through entry point for login purpose. Let me share the config settings for the scan - https://drive.google.com/drive/folders/113JGN_Xe_KZT4X5Qu3v-iDX1Mc6LOdtf?usp=sharing

Liam, PortSwigger Agent | Last updated: Nov 10, 2021 12:54PM UTC

Thanks, Naman. Would it be possible to send us your crawl debug logs? You can enable these from the Crawl config > New Scan config > Crawl Optimization > Cog icon.

Liam, PortSwigger Agent | Last updated: Nov 10, 2021 12:54PM UTC

You can email us at support@portswigger.net. Thanks!

Naman | Last updated: Nov 11, 2021 05:21AM UTC

ok I will send log files through email

Liam, PortSwigger Agent | Last updated: Nov 11, 2021 08:26AM UTC

Thanks, we've received them. We'll investigate and get back to you ASAP.

Naman | Last updated: Nov 11, 2021 09:45AM UTC

Ok. Thanks for cooperating.

Naman | Last updated: Nov 15, 2021 04:25AM UTC

If there's any update on this problem please notify me

Liam, PortSwigger Agent | Last updated: Nov 15, 2021 11:37AM UTC

Hi Naman. We're still looking into this issue. We'll update you ASAP.

Naman | Last updated: Nov 16, 2021 08:01AM UTC

Ok, Thanks for the reply.

Joseph | Last updated: Dec 13, 2021 09:48PM UTC

I am getting this same error in my logs when trying to use a recorded sequence. I have the same version of BurpSuite and would like to hear about any progress you make on this. Thanks.

Liam, PortSwigger Agent | Last updated: Dec 14, 2021 09:53AM UTC

Hi Joseph, we have further updates planned for next year with the recorded login feature. Would it be possible to send us your crawl debug logs? You can enable these from the Crawl config > New Scan config > Crawl Optimization > Cog icon. Is the application you are testing publicly accessible?

Ashish | Last updated: Jun 17, 2022 08:42AM UTC

I am getting this same error when trying to use a recorded sequence. Burp suit professional version is v2022.3.9 and is this issue resolved, please reply. Thanks

Liam, PortSwigger Agent | Last updated: Jun 17, 2022 01:17PM UTC