Burp Suite User Forum

Login to post

Stop scan

grof | Last updated: Dec 10, 2021 11:59PM UTC

I need to stop scan on paticular GET/POST keyword. If web page says: "Error. Could not find..." I want previous GET/POST. To stop at that message.

Liam, PortSwigger Agent | Last updated: Dec 14, 2021 08:55AM UTC

To clarify, do you want Burp Scanner to stop all scanning if any keyword passes through Burp during the scan?

grof | Last updated: Dec 16, 2021 03:41PM UTC

Yes. If part of some sentence is found stop all scanning. For example, "Could not find any...". Whole sentence in that order.

Liam, PortSwigger Agent | Last updated: Dec 17, 2021 12:03PM UTC

This isn't something we would be likely to do. The closest thing we might do is to let users configure certain status codes as errors that would stop the scan.

grof | Last updated: Dec 17, 2021 05:40PM UTC

I know there is a method to stop on particular keyword. I want to change GET to POST at that point. It's on repeater, but I dont know how to add that keyword.

Uthman, PortSwigger Agent | Last updated: Dec 20, 2021 12:16PM UTC

Can you clarify what you're trying to do step-by-step, please? Or share a screen recording with support@portswigger.net?

I think the Reshaper extension may help you.

grof | Last updated: Dec 21, 2021 01:29AM UTC

I saw someone on youtube do this, and I forgot the clip name. English is not my mother language so I'll try to describe. For example, if I want to log into some account and I deliberately enter false username/password, I want to stop scan at the message "Wrong username/password". I'm still learning.

Uthman, PortSwigger Agent | Last updated: Dec 21, 2021 10:42AM UTC


No problem! Thank you for clarifying that.

I think you may want to use the Intruder, not the scanner. You can check out the Turbo Intruder extension and the documentation on the Intruder.

You may also want to check out the Web Security Academy labs on Authentication - these cover brute-force attacks (i.e. what you are trying to do).

You need to Log in to post a reply. Or register here, for free.