Research Academy
My account Customers About Blog Careers Legal Contact Resellers

Burp Suite User Forum

Create new post

Burp match and replace

pentest | Last updated: Jun 07, 2018 12:57PM UTC

Hi I have burps match and replace enabled but it its not replacing, heres what I have done goto proxy tab > then options > enabled item request header > insert blind xss (begins User-Agent: *****some payload here**** set proxy settings in browser > browse site > but user agent is not changing it should say > auto-modified request latest burp commnuity on kali linux 2018.2

Liam, PortSwigger Agent | Last updated: Jun 07, 2018 01:29PM UTC

Just to clarify, have you created a custom match and replace rule? The match column is sensitive to errors, you could try using User-Agent:.* and the "Regex match" function. If you're still having issues, please could you forward a screenshot of your rule and the request and response to support@portswigger.net.

Burp User | Last updated: Jun 09, 2018 09:50AM UTC

yes thanks this seems to of resolved it > User-Agent:.* <I was using the default ^User-Agent.*$ I will report back if the issue reappears, it might be well worth changing for the next burp update if possible? Thanks

Burp User | Last updated: Jun 09, 2018 10:47AM UTC

It worked briefly and now not working again, this is most frustrating I will send the screens over now

Iran | Last updated: Oct 27, 2021 11:36PM UTC

Hi there, Portswigger team! Unfortunately I have the same issue here. My team needs to send a "special" User-Agent value to be identified and not blocked by my WAF's enterprise. I set the "Match and Replace" rule over "Proxy > Options", but it does not work at all. I am talking to my leaders that it is not the smart way to not block pentesters IP addresses, but till we decide about that, I would love seeing this "Match and Replace" feature working fine. As we do not have the continuation of this matter here in this forum, may I send you my screenshots about this issue? What should be the email subject, please? We use a BurpSuite Pro v2021.9.1 (latest version for october 2021). Thank you in advance!

Liam, PortSwigger Agent | Last updated: Oct 28, 2021 07:48AM UTC

Hi Iran. If you're still having issues, please could you forward a screenshot of your rule and the request and response to support@portswigger.net, please?

You must be an existing, logged-in customer to reply to a thread. Please email us for additional support.