Research Academy
My account Customers About Blog Careers Legal Contact Resellers
The Burp Suite User Forum was discontinued on the 1st November 2024.

Burp Suite User Forum

For support requests, go to the Support Center. To discuss with other Burp users, head to our Discord page.

SUPPORT CENTER DISCORD

Unable to intercept traffic of web application

Prafulkansal | Last updated: Dec 14, 2023 08:07AM UTC

Web application is working on system proxy whereas when i change browser proxy to burp proxy webapplication is not working showing following error at browser side:- An error occurred during a connection to "Hostname". Peer’s certificate has an invalid signature. Error code: SEC_ERROR_BAD_SIGNATURE The page you are trying to view cannot be shown because the authenticity of the received data could not be verified. Please contact the website owners to inform them of this problem.

Dominyque, PortSwigger Agent | Last updated: Dec 14, 2023 09:10AM UTC

Hi Prafulkansal Do you have an upstream proxy set up? Have you installed the Burp CA certificate in your browser and fully trusted it? What browser are you using? Should you need further details on how to install the Burp's CA Cert, please look here: https://portswigger.net/burp/documentation/desktop/external-browser-config

Prafulkansal | Last updated: Dec 14, 2023 09:42AM UTC

i have installed Burp CA certfor other web application i am reciving the request But in this web application case i am not reciving request i am using both Burp browser and firefox as application supports NTLM authentication that too i have configured on firefox and burp

Prafulkansal | Last updated: Dec 14, 2023 09:49AM UTC

i tried adding upstream proxy too

Dominyque, PortSwigger Agent | Last updated: Dec 14, 2023 10:01AM UTC

Hi Prafulkansal Can you please email support@portswigger.net with the following: 1) Take a screenshot of your browser when you encounter the error. 2) Screenshot of the Event Log (with the debug filter enabled) when you encounter the error in your browser 3) Are you not seeing any traffic in your HTTP history in the Proxy tab?

Prafulkansal | Last updated: Dec 14, 2023 10:08AM UTC

Yes able to see HTTP traffic: - HTTP/2 401 Unauthorized can we connect over call to discuss on this issue as i need to apply for whitelisting of your email address to share email with you.

Prafulkansal | Last updated: Dec 14, 2023 10:08AM UTC

Yes able to see HTTP traffic: - HTTP/2 401 Unauthorized can we connect over call to discuss on this issue as i need to apply for whitelisting of your email address to share email with you.

Dominyque, PortSwigger Agent | Last updated: Dec 14, 2023 10:26AM UTC

Hi Prafulkansal If you are getting a response with HTTP/2, this means that your target server is supporting HTTP/2. However, NTLM will not work with HTTP/2 If you navigate to Settings> Network> HTTP, and under HTTP/2, can you disable 'default to HTTP/2 if the server supports it'? Please let me know if this resolves the issue.

Prafulkansal | Last updated: Dec 14, 2023 10:53AM UTC

tried this too, doesnt solve my problem. still facing same

Dominyque, PortSwigger Agent | Last updated: Dec 14, 2023 11:00AM UTC

Hi Prafulkansal Did you close all your open browsers before sending a request in a newly opened browser after disabling HTTP/2? Are you using Burp's browser to do this? What settings do you have configured under Platform Authentication? What do you see in the request and response after disabling HTTP/2?

Prafulkansal | Last updated: Dec 14, 2023 11:23AM UTC

no i am using firfox as application supports windows authentication not reciving request for http in burp also

Prafulkansal | Last updated: Dec 14, 2023 11:29AM UTC

i have configured as per our infra in platform authentication

Dominyque, PortSwigger Agent | Last updated: Dec 14, 2023 11:29AM UTC

Hi Prafulkansal Can you please confirm the following?: - Did you close all your open browsers before sending a request in a newly opened browser after disabling HTTP/2? - What settings do you have configured under Platform Authentication?

Prafulkansal | Last updated: Dec 14, 2023 11:44AM UTC

yes i have closed all browser for platform Authentication: - Destination host: - entered the hostname of uat application on which application hosted Auth type: - tried with boyh NTLMv1, NTLMv2 Username: - Porvided AD username Password: - entered password for AD domain:- navbackoffice.com domain hostname: - hostname.navbackoffice.com *webapplication is successfully running with burp proxy i.e. system proxy*

Dominyque, PortSwigger Agent | Last updated: Dec 14, 2023 11:52AM UTC

Hi Prafulkansal Thank you for providing us with that information. Can you try using Burp's embedded browser instead of Firefox and see if you are successful with this please?

Prafulkansal | Last updated: Dec 14, 2023 12:01PM UTC

Tried with burp browser doesnt work

Prafulkansal | Last updated: Dec 14, 2023 12:02PM UTC

but using burp browser http request is recieved

Dominyque, PortSwigger Agent | Last updated: Dec 14, 2023 01:04PM UTC