Research Academy
My account Customers About Blog Careers Legal Contact Resellers

Burp Suite User Forum

Create new post

Feature request (other ssl/tls protocol support)

Bruno | Last updated: Jul 21, 2015 05:26PM UTC

What would compliment this great tool is the ability to support other protocols that run on SSL/TLS like SMTP secure and IMAP secure. There are other proxy like tools out there for these protocol yet none of them provide the ability to modify the intercepted content. One can only see the content as it's logged to a log file. I think the ability to support other protocols not just HTTP on top of SSL would be an excellent addition to the Burp pro suite.

PortSwigger Agent | Last updated: Jul 21, 2015 07:05PM UTC

Thanks for your request, however we have no current plans to support protocols that aren't used between normal web clients and servers.

Burp User | Last updated: Jul 21, 2015 07:48PM UTC

SMTP and IMAP are both application layer protocols utilized by many web clients. As it stands now, Burp can only be used for HTTP traffic. If Burp could support the other well known application layer protocols its market share would increase exponentially. Burp is the go to tool for http proxying but nothing out there for IMAP, FTP, SMTP, SIP, DHCP. It's just a matter of parsing out the different packet structures. Currently SSLSplit allows you to see the content of many application layer protocols even over SSL/TLS, however, it does not allow for interception and modification. This would open up proper testing capabilities all sorts of different applications.

You must be an existing, logged-in customer to reply to a thread. Please email us for additional support.