Research Academy
My account Customers About Blog Careers Legal Contact Resellers
The Burp Suite User Forum was discontinued on the 1st November 2024.

Burp Suite User Forum

For support requests, go to the Support Center. To discuss with other Burp users, head to our Discord page.

SUPPORT CENTER DISCORD

Skipping Tests & URL's in Audit

George | Last updated: Apr 22, 2022 09:24AM UTC

I'm trying to reduce the time it takes for a scan to complete, I've noticed some URL's are taking a long time to scan, and a lot of duplicate parameters I'd like to try and filter out, but I haven't been successful so far. 1. The first issue is trying to create a regex in the skip all tests section of the audit configuration. I would like to skip all tests for any parameter with the name 'column' at the start, I tried using this regex, but with no success: ^(column).* Is there any quirks with restricting particular parameters using a regex, or any way to easily test this? (It works in any regex testing site) 2. The second issue I am having is trying to skip the audit for a particular URL, for example, trying to skip https://host.com/login, I've set the skip all tests for these parameters section to: URL Path Filename = login But this doesn't work as expected, as a lot of tests are still being performed for this URL. I can't use the exclude URL's part of the scan, as I need this URL to be crawled and used for the login of the site.

Michelle, PortSwigger Agent | Last updated: Apr 25, 2022 10:19AM UTC