Getting Started with Burp Suite
Burp Suite Documentation
Take a look at our Documentation section for full details about every Burp Suite tool, function and configuration option.
Burp Suite Professional and Community editions | Burp Suite Enterprise Edition |
Burp Scanner | Burp Collaborator |
Burp Infiltrator | Full Documentation Contents |
Burp Extender
Burp Extender lets you extend the functionality of Burp Suite in numerous ways.
Extensions can be written in Java, Python or Ruby.
API documentation | Writing your first Burp Suite extension |
Sample extensions | View community discussions about Extensibility |
Generate cookie/session per request - Intruder
Hi, guys.
I'd like to know how to configure intruder to generate a new cookie and session per request.
I'm facing a problem when I try to make a request because my target session expires very quickly and I can't make multiple requests on the same session using the same cookie.
Thanks in advance.
Hi Bryan
Thanks for your message.
Have you tired using Burp’s session handling rules?
- https://support.portswigger.net/customer/en/portal/articles/2363088-configuring-burp-s-session-handling-rules
The simplest way would be to create a macro that establishes a fresh session, make a session rule to run that macro before each relevant Intruder requests, and use a single attack thread.
Alternatively, a more complex approach would be to make a rule to test for session validity and recover if needed.
Please let us know if you need any further assistance.