Burp Suite User Forum

Login to post

Suggestions for Burp Collaborator Server config options

intrd | Last updated: Dec 17, 2021 05:35PM UTC

Hey support/albinowax, Some suggestions for Burp Collaborator Server config options: - "customHttpContent" for unknown paths to replace that "Burp Collaborator is a service.." default response; - "customHttpContent" to replace/remove default "Server" and "X-Collaborator-Version" headers. To avoid things like this https://www.shodan.io/search?query=%22Burp+Collaborator+Server%22 - "logLevel" more verbose to show the request header/content not only type and ip.src. This simple verbose debug option would make monitoring much more flexible, it will enable persistent interaction IDs, Discord notification, and mainly independence of the burpsuite collaborator client polling. (I did a workaround with tcpdump/ssldump, but it would be interesting an option to do this). Thank you!

Uthman, PortSwigger Agent | Last updated: Dec 20, 2021 11:19AM UTC

Hi, Thanks for these suggestions! We've raised a few feature requests to address them so we will update this thread if/when they are implemented.

You need to Log in to post a reply. Or register here, for free.