Research Academy
My account Customers About Blog Careers Legal Contact Resellers

Burp Suite User Forum

Create new post

improve burp handling of http requests

Omar | Last updated: Feb 24, 2017 03:33PM UTC

Hi I will explain the idea by an example, suppose this website " target.com " points to two IPs ( 1.1.1.1 & 2.2.2.2 ) and these IPs has open port " 80 " now we have 4 entry points to test A) when the server is 1.1.1.1 & port is 80 1- GET / HTTP/1.1 Host: 1.1.1.1 2- GET / HTTP/1.1 Host: target.com B) when the server is 2.2.2.2 & port is 80 1- GET / HTTP/1.1 Host: 2.2.2.2 2- GET / HTTP/1.1 Host: target.com the problem is : in the site map burp handles requests per server and considers point 1 & 2 as one instance so in this scenario we could have only three instances in the site map 1- by visiting http://1.1.1.1/ in the browser 2- by visiting http://2.2.2.2/ in the browser 3- by visiting http://target.com/ in the browser so target.com is virtual host will only point to one ip 1.1.1.1 or 2.2.2.2 ( in site map) and we lost one entry point Thanks

PortSwigger Agent | Last updated: Feb 27, 2017 10:08AM UTC

If you want to test using the target.com host header against each of the target IP addresses, then the best way to approach this would be with Burp's hostname redirection feature (at Project options / Connections / Hostname resolution). If you set an entry to point this hostname at 1.1.1.1, and do your full normal testing, you can then change the entry to point at 2.2.2.2 and repeat the testing.

You must be an existing, logged-in customer to reply to a thread. Please email us for additional support.