How Do I?
Can I get snipped requests/responses in XML reports?
Hi, my name is Xavi. I am one of the maintainers of the Dradis Burp Importer plugin: https://github.com/dradis/dradis-burp We noticed that when Burp exports an HTML report, in the "Request" and "Response" fields it just shows the relevant parts of the HTTP request/response, using "[SNIP]" to hide the undesired parts (see https://portswigger.net/burp/samplereport/b...1 Agent Answer 0 Community AnswerDec 12, 2018 09:47AM UTC
Is it burp if so plz help.or if u know what it could be.
Hello . my name is Holly . and really I'm just looking for some type of answers on whats going on with my phone. I had a line previous to the one I have now and I all of a sudden was getting this beeping sound as if lije my phone was transmitting something. I turned it off took battery out even factory reset the phone.it still made the noise. And a ring would light up around my home button ...1 Agent Answer 0 Community AnswerDec 11, 2018 11:22PM UTC
Intercept TLSv1.2 traffic no server_name Burp Proxy
I am using Burp as an invisible proxy to intercept all the traffic from a remote box, I have root privileges on the remote box and I have installed the correct certificate in it. Connecting the remote box to an Access Point where Burp is running and redirecting the traffic with iptables (or with configurations of the /hosts file) to the IP/Port Burp is listening. Problem: The remote box contac...0 Community AnswerDec 10, 2018 09:29PM UTC
Using Mobile Assistant on iPhone 5 running 10.3.3
I'm trying to run Mobile Assistant on iPhone 5 running iOS 10.3.3, jailbroken with h3lix. Previously installed the mobile assistant and was able to launch the app and intercept traffic. It suddenly stopped working. It shows the splashscreen of the app and crashes out. Did anyone manage to get the Mobile Assistant working?1 Agent Answer 0 Community AnswerDec 10, 2018 06:42PM UTC
Exclude from crawl scope using query string (burp 2.0.13)
Hi, How can I, for example, exclude the following URL from the crawl scope: https://example.com/main.php?logOut=true Thanks in advance3 Agent Answers 1 Community AnswerDec 07, 2018 11:04AM UTC
Change number agents covered in a license of Burp Enterprise
How to change number agents covered in a license of Burp Enterprise?1 Agent Answer 0 Community AnswerDec 07, 2018 06:35AM UTC
CSRF token extraction in forms responding with 302 redirect headers
Hi, I am trying to launch an intruder session on a csrf protected login form. The form uses the anti-csrf mechanism implemented by the Laravel framework, which basically uses a double token model (a cookie-base token, and a hidden form field token). Burp successfully manages the automatic update of the cookie-based csrf token transparently through its first session handling rule. I foun...1 Agent Answer 1 Community AnswerDec 06, 2018 11:54AM UTC
SHA1 certificate signatures
It looks like up to about v1.6 SHA1 was used exclusively for certificates, then the switch to SHA256 happened. Is there a way to restore the old SHA1 behavior? This would be quite helpful for a current project. I looked around and don't see an option for it. Disabling SHA256 in java.security doesn't have an effect on generated certificate signatures (regardless of the Enable algor...1 Agent Answer 1 Community AnswerDec 06, 2018 11:01AM UTC
Too many duplicate requests generated by Burp Enterprise while scanning
Hi, I am scanning a site using Burp Enterprise. Checking the logs of request and response in Logger++ using an upstream proxy, I observed that there are a huge number of duplicate requests are being made; and thus increasing the total time duration of a scan. These requests differ only differ in JSESSIONID. Can I avoid this? if yes- how?1 Agent Answer 0 Community AnswerDec 06, 2018 08:05AM UTC
curl 400 bad request
I want to connect to a website without browser, with curl. I set up an http proxy (burp community edition) to see how my browser connects to this website. I clear all history (including cookies) and restart my browser. Here is what the proxy gives (as http request): GET / HTTP/1.1 Host: xxx.xxxxxxxxx.xx User-Agent: Mozilla/5.0 (X11; Linux i686; rv:60.0) Gecko/20100101 Firefox/60.0 Accept: te...1 Agent Answer 0 Community AnswerDec 05, 2018 03:05PM UTC