Support Center

Burp Community

See what our users are saying about Burp Suite:

How do I?

New Post View All

Feature Requests

New Post View All

Burp Extensions

New Post View All

Bug Reports

New Post View All
Documentation

Burp Suite Documentation

Take a look at our Documentation section for full details about every Burp Suite tool, function and configuration option.

Full Documentation Contents Burp Projects
Suite Functions Burp Tools
Options Using Burp Suite
Extensibility

Burp Extender

Burp Extender lets you extend the functionality of Burp Suite in numerous ways.

Extensions can be written in Java, Python or Ruby.

API documentation Writing your first Burp Suite extension
Sample extensions View community discussions about Extensibility

How Do I?

Make a new post

  • Failing Verify DNS Interaction

    Hello, I have been attempting to set up a collaborator server in AWS. I have it set up for burp.example.com. The only way I can pass all of the health checks except: Verify DNS interaction Warning Verify HTTP interaction Warning Verify HTTPS interaction Warning Verify SMTP interaction Warning Verify SMTPS interaction Warning is if I do a *.burp.example.com A record pointing to my elastic...

    1 Agent Answer    0 Community Answer
    Dec 19, 2018 04:13PM UTC
  • Burp Suite Administrator password

    I just installed the Burp Suite Enterprise Edition. I changed the password, copied it but didn't save it and now I can't log back in. How can I change the password if I don't know the old password? Thank you.

    2 Agent Answers    1 Community Answer
    Dec 18, 2018 10:37PM UTC
  • Error when using carbonator

    I get below error when using carbonator Initiating Carbonator Against: http://day191-181101-sql-274h.qa /rest/connect/ burp.ysg@1d01dc2f Sending new URL to Vulnerability Scanner: URL # 1 Sending new URL to Vulnerability Scanner: URL # 2 Sending new URL to Vulnerability Scanner: URL # 3 Scanner: java.net.SocketException: Connection reset Scanner: java.net.SocketException: Connection reset ...

    3 Agent Answers    2 Community Answers
    Dec 18, 2018 08:51AM UTC
  • How do i deactivate burp (single user license) license from one machine and activate in another

    Hi, Unfortunatley i have installed and activated burp license in a wrong machine. I need to deactivate this license (which no longer using in this machine) and activate i another machine. Please suggest me the steps to perform the same. Thanks, Satish.

    1 Agent Answer    0 Community Answer
    Dec 18, 2018 02:03AM UTC
  • Optimal setup for using the scanner

    Hi, I use QA automated testing scripts to run through the Burp proxy to record the traffic and get pretty good coverage of our app. Then once the automated test have completed, I run the scanner test. Because of the size of our app and the amount of traffic recorded, when all the duplicates are dropped out, I still have over 10,000 entries in the scanner queue. When I run the scan, it takes a l...

    2 Agent Answers    1 Community Answer
    Dec 17, 2018 04:14PM UTC
  • Burp2 URL exclusion for scan, but not for session

    For Burp2 and Burp EE - how do I exclude the URL for scanning, but not for crawling part? That is, the login is taken care of by 3rd party authentication mechanism located in external domain. Example: Test scope URL: www.test.com When I first to go such address, I'm redirected to www.log.me.in = different domain. I need crawler to fill in the authentication parameters here. After success, I...

    1 Agent Answer    0 Community Answer
    Dec 17, 2018 12:41PM UTC
  • No Websocket history

    Hi, I have iOS device connected through Burp suite proxy. Bind to address: All intefaces. I can see everything in http history, but there is nothing in WebSocket history. And I'm quite sure I open Web socket connection from iOS device. What do I have to do to see WebSocket history? Regards

    1 Agent Answer    0 Community Answer
    Dec 14, 2018 03:06PM UTC
  • Enterprise - Generic CI Driver - Expected 101 when negotiating websocket

    Hi, As part of evaluating the enterprise edition for our company I have to try and use the generic CI driver for build integration. So far I've been trying to use it locally only (no build environment involved) and for the past few days I've been stuck on this issue: ERROR: net.portswigger.bH: Expected 101 status when negotiating websocket, but got 200 with message body: [...] E...

    2 Agent Answers    1 Community Answer
    Dec 13, 2018 09:13AM UTC
  • Can I get snipped requests/responses in XML reports?

    Hi, my name is Xavi. I am one of the maintainers of the Dradis Burp Importer plugin: https://github.com/dradis/dradis-burp We noticed that when Burp exports an HTML report, in the "Request" and "Response" fields it just shows the relevant parts of the HTTP request/response, using "[SNIP]" to hide the undesired parts (see https://portswigger.net/burp/samplereport/b...

    1 Agent Answer    0 Community Answer
    Dec 12, 2018 09:47AM UTC
  • Is it burp if so plz help.or if u know what it could be.

    Hello . my name is Holly . and really I'm just looking for some type of answers on whats going on with my phone. I had a line previous to the one I have now and I all of a sudden was getting this beeping sound as if lije my phone was transmitting something. I turned it off took battery out even factory reset the phone.it still made the noise. And a ring would light up around my home button ...

    1 Agent Answer    0 Community Answer
    Dec 11, 2018 11:22PM UTC