Burp Suite User Forum

Login to post

Update Intruder during Attack

Paul | Last updated: Dec 07, 2021 07:40PM UTC

It would be a nice feature to be able to update an intruder attack while it's running. The case I just ran into was testing an API and the JWT expired. It would have been helpful if I could pause the Intruder attack, update the request, and then resume scanning using the updated request. Thank you.

Liam, PortSwigger Agent | Last updated: Dec 08, 2021 06:48AM UTC

Paul, you should be able to use one of the following extensions from the BApp Store:

Authentication Token Obtain and Replace
Auth Analyzer
JSON Web Tokens
Add Custom Header

You need to Log in to post a reply. Or register here, for free.