Show NTLM auth on requests
Currently NTLM authentication used in burp in not shown in any request and cannot be tracked/checked in anyway.
A log should be usefull to check if there is problems.
NTLM involves a three-way handshake over a single TCP connection, so for each request that Burp needs to make, it is actually issued twice, each with a different authentication header. Unlike with Basic authentication, there isn’t a single request that Burp could show that includes the authentication header.
However, in principle we could provide some additional logging or diagnostics of the NTLM handshake. If enough users request this feature, we’ll consider adding it.