How Do I?

Make a new post

  • Timings for Request/Responses

    Burp Extender's getProxyHistory gives you an array of IHttpRequestResponse objects. How do you obtain the time the request was sent and the response was received? IRequestInfo and IResponseInfo don't appear to provide this information either, but the information is available in the proxy history tab.

    2 Agent Answers    2 Community Answers
    Mar 20, 2015 12:26AM UTC
  • URL does not get resolved

    Followed the getting started instructions and the intercept tab does display the requests but after I forward through them in Burp the browser does not resolve the URL and instead displays the following: Burp Suite Professional Error Unknown host: http://www.overclockers.co.uk/

    2 Agent Answers    3 Community Answers
    Mar 17, 2015 03:36PM UTC
  • NTLM Authentication

    Hello, I am trying to access an internal application and conduct a scan. The application uses NTLMv1. When I attempt to use Platform Authentication in burp, it doesn't work. This morning I have gone so far as to clearing my cookie jar, all history in my browser and starting from the very beginning. Here is what I am doing: 1.) Open a new browser 2.) Open Burp Suite 3.) Attempt to a...

    2 Agent Answers    1 Community Answer
    Mar 13, 2015 02:57PM UTC
  • Intercept requests made from excel

    I am clicking a link in a excel cell. Tell me if i can intercept thst using Burp. I have a Burp Prof license

    1 Agent Answer    0 Community Answer
    Mar 12, 2015 11:39AM UTC
  • Encountered a trouble when setting https proxy in os x 10.10 for firefox

    I've read this aritcle(http://portswigger.net/burp/help/proxy_options_installingCAcert.html) and followed the instructions of the firefox section. But when I browsed twitter, it told me: "Unable to Connect Securely Firefox cannot guarantee the safety of your data on twitter.com because it uses SSLv3, a broken security protocol. Advanced info: ssl_error_no_cypher_overlap" ...

    1 Community Answer
    Mar 11, 2015 09:44AM UTC
  • Can we Test ThickClient build using C++ running on TCP Protocol

    Hi, We are pen-testing Thick-client application developed in C++ running on TCP protocol using Winsock controls. I have tried changing the following >> Under proxy tab modified Options as ------------------------------------------------------------------------------------------------------------------------ Running | Interfaces | Invisibles | Redirect ...

    1 Agent Answer    1 Community Answer
    Mar 09, 2015 04:56AM UTC
  • Increase single-thread scanner speed

    Not sure if this is a bug or the standard behavior, so posting here first. I tried this with burpsuite_pro_v1.6.11.jar and burpsuite_pro_v1.6.02.jar with the default initial config. The application was hosted locally with apache. Same results. When I setup the scanner to do several items at the same time I see all the configured threads running simultaneously. Some of them go really fast, at...

    4 Agent Answers    2 Community Answers
    Mar 05, 2015 08:45PM UTC
  • Usage of ssl certificates

    Hi, i have an address that is a restful service that requires an SSL cert inorder to access it the address starts as: https://certapi.t6.lmuk.local/ Please note: -This is an internal address the available to external networks - I'm quite new to Burpsuite Basically i'm trying to hit the address in firefox as it has been configured my proxy gone through the setting on both burp...

    1 Agent Answer    0 Community Answer
    Mar 03, 2015 12:29PM UTC
  • Invalid client request received: Dropped request looping back to same Proxy listener

    Getting the above error when trying to connect to WebGoat using port 8080 on my local host through Firefox. I've set up the Firefox proxy for localhost port 8080 and the same on Burp. Saw another post with the same problem which mentioned invisible proxies? Couldn't figure it out. Thought I'd start a new thread. Any help ASAP would be great.

    1 Agent Answer    0 Community Answer
    Feb 25, 2015 01:28AM UTC
  • Set one cookie equal to another in intruder

    I have a situation where a cookie is set in Javascript so it's not coming up under the "set cookie" header for handling in macro's. For this post I'll refer to this cookie as "window". No problem - I know the value is always equal to the Session ID. I am also trying to create a macro that also get's a new SessionID for every request (long story). There s...

    1 Agent Answer    0 Community Answer
    Feb 24, 2015 12:18AM UTC