The Burp Suite User Forum was discontinued on the 1st November 2024.

Burp Suite User Forum

For support requests, go to the Support Center. To discuss with other Burp users, head to our Discord page.

SUPPORT CENTER DISCORD

Replacing the protocol from http to https

sathish | Last updated: Oct 08, 2020 03:36PM UTC

Hi, How can I capture HTTP traffic and make redirect to HTTPS?

Liam, PortSwigger Agent | Last updated: Oct 09, 2020 07:40AM UTC

Force use of TLS - If this option is configured, Burp will use HTTPS in all outgoing connections, even if the incoming request used plain HTTP. You can use this option, in conjunction with the TLS-related response modification options, to carry out sslstrip-like attacks using Burp, in which an application that enforces HTTPS can be downgraded to plain HTTP for a victim user whose traffic is unwittingly being proxied through Burp. - https://portswigger.net/burp/documentation/desktop/tools/proxy/options#proxy-listeners

sathish | Last updated: Oct 09, 2020 10:58AM UTC