Show NTLM auth on requests
Currently NTLM authentication used in burp in not shown in any request and cannot be tracked/checked in anyway.
A log should be usefull to check if there is problems.
NTLM involves a three-way handshake over a single TCP connection, so for each request that Burp needs to make, it is actually issued twice, each with a different authentication header. Unlike with Basic authentication, there isn’t a single request that Burp could show that includes the authentication header.
However, in principle we could provide some additional logging or diagnostics of the NTLM handshake. If enough users request this feature, we’ll consider adding it.
Currenly I got an application running on NTLMv2 that cannot get correctly the burp authentication (under firefox browser work well).
Currently BURP doesn't use signature feature on NTLMv2 authentication, so if the server check the signature the request will be not valid.
The only way that I found to get it working is use fiddler to do the authentication.