Research Academy
My account Customers About Blog Careers Legal Contact Resellers

Burp Suite User Forum

Create new post

How do I export reports from Burp Enterprise?

Lucas | Last updated: Mar 06, 2019 07:33AM UTC

For one of the requirements I need to be able to push the Burp issues into a centralized artifact retention system. How do I automatically generate a XML or HTML in Enterprise (similar to burp pro) that I can export into another system? Is there an API that I can call (e.g. Jenkins monitoring whether the scan is finished, then pulling the results from Burp into the artifact storage)?

PortSwigger Agent | Last updated: Mar 06, 2019 07:59AM UTC

You can use the REST API to extract the results as JSON, if that will do for you? You can browse the API spec at http://host:port/api/apikey

Burp User | Last updated: Jun 20, 2019 10:30PM UTC

Hi Team, Kind information! There is no api on <http://host:port/api/apikey> that extract Html report for burp enterprise. Please guide us to the correct solution.

PortSwigger Agent | Last updated: Jun 21, 2019 07:46AM UTC

There's currently no way to download the HTML report from the API but we have logged this as a future improvement.

Siva | Last updated: Jun 25, 2020 02:48AM UTC

Hi is that feature enabled in API or any other way to export the report without manual intervention

Hannah, PortSwigger Agent | Last updated: Jun 25, 2020 07:06AM UTC

Hi Siva We recently released a GraphQL API for Burp Suite Enterprise. You can find our documentation here: - https://portswigger.net/burp/documentation/enterprise/api-reference - https://portswigger.net/burp/extensibility/enterprise/graphql-api/ To generate a report, you can use the following instructions: query GetScanReport { scan_report(scan_id: $SCAN_ID, include_false_positives: $BOOLEAN) { report_html } } The raw HTML for the report will include a lot of escape characters so it needs to be JSON-unescaped first. Then copy this into a file and append .html to the filename. Alternatively, you could query as a curl request (this generates an HTML report): curl -X POST -H "Content-Type: application/json" -H "Authorization: <API-KEY>" --data '{"query": "{scan_report(scan_id: $SCAN_ID, include_false_positives: $BOOLEAN){report_html}}"}' <ENTERPRISE_SERVER_URL>/graphql/v1

You must be an existing, logged-in customer to reply to a thread. Please email us for additional support.