Burp 2: Application Login - 2nd authentication step
The New Login Credentials accept username and password. Would it be possible to introduce an optional 2nd authentication step, like PIN (with static value)? For example, user needs to fill in username+password, followed by PIN on 2nd page for authentication to be complete.
Thanks for letting us know about this. To support this and other non-standard authentication flows, we’re going to investigate providing a “record login” function.
In the meantime, unfortunately the new crawler is not able to cover this site.
This is still in our backlog. Unfortunately, we can’t provide an ETA.
Currently I am not able to crawl websites with complex authentication mechanisms (including more than one step) and I guess this feature would solve my issue.
Volodia, unfortunately we still don’t have an ETA on this.