Research Academy
My account Customers About Blog Careers Legal Contact Resellers

Burp Suite User Forum

Create new post

Section Symbols are appearing in images which breaks Intruder

Benjamin | Last updated: May 27, 2022 01:56AM UTC

Section Symbols '§' are appearing in any images (jpg, gif, png, etc.) when retrieved in GET requests or posted in POST, if sent to Intruder it corrupts the image because it strips those characters.

Liam, PortSwigger Agent | Last updated: May 27, 2022 05:49AM UTC

Hi Benjamin. Thanks for this report. Do you have an example application to help us reproduce the issue?

Benjamin | Last updated: May 31, 2022 12:25AM UTC

literally anything, for example this random picture from google image search for "cats" https://images.pexels.com/photos/45201/kitty-cat-kitten-pet-45201.jpeg?auto=compress&cs=tinysrgb&dpr=1&w=500, is there somewhere I can attach a screenshot to show you the issue?

Michelle, PortSwigger Agent | Last updated: May 31, 2022 10:48AM UTC

Can you send the screenshots over to support@portswigger.net so we can take a closer look, please?

GarlicCheese | Last updated: Jun 05, 2023 06:12AM UTC

Any status on this issue? I'm facing the same problem, but with an mp4 file upload, which has the '§' symbol in its binary data representation in the intruder. This messes with the intruder positioning as shown here: https://i.imgur.com/Eisssxr.png Either the intruder will address random areas in the binary, or the symbols are removed, which will break the mp4 file.

Hannah, PortSwigger Agent | Last updated: Jun 05, 2023 08:16AM UTC

Hi Could you tell us the version of Burp that you are using? Our behavior around automatic highlighting of Intruder insertion points changed in v2023.4 onwards, allowing you to send items to Intruder containing section symbols without them being marked as insertion points.

GarlicCheese | Last updated: Jun 05, 2023 12:41PM UTC

I'm working with v2023.5.2. The problem isn't the automatic highlighting, but the fact that the intruder will recognize sections between '§' symbol as an insertion point. The binary data as shown in the screenshot I've posted before features this symbol multiple time. I've sent this request, including the binary data in the POST form, to the intruder, which will address the sections in the uploaded file data, not just the manually specified sections.

Hannah, PortSwigger Agent | Last updated: Jun 06, 2023 12:52PM UTC

Hi I've done some testing, and as you mentioned, although not highlighted, the section symbols are still used as insertion points. We've raised a feature request to change this behavior, but unfortunately, there is no workaround at the moment.

GarlicCheese | Last updated: Jun 07, 2023 05:07AM UTC

I'm glad you could reproduce the issue on your end. Thank you for your time Hannah!

hayder | Last updated: Jul 04, 2023 08:24PM UTC

i still suffer this issue can we change section symbol (§) with other character to avoid this issue?

Hannah, PortSwigger Agent | Last updated: Jul 05, 2023 08:57AM UTC

Thank you for the feedback. We've added your +1 to our ongoing feature request for this functionality.

You must be an existing, logged-in customer to reply to a thread. Please email us for additional support.