Support Center

Burp Community

See what our users are saying about Burp Suite:

How do I?

New Post View All

Feature Requests

New Post View All

Burp Extensions

New Post View All

Bug Reports

New Post View All

Burp Suite Documentation

Take a look at our Documentation section for full details about every Burp Suite tool, function and configuration option.

Full Documentation Contents Burp Projects
Suite Functions Burp Tools
Options Using Burp Suite

Burp Extender

Burp Extender lets you extend the functionality of Burp Suite in numerous ways.

Extensions can be written in Java, Python or Ruby.

API documentation Writing your first Burp Suite extension
Sample extensions View community discussions about Extensibility

How Do I?

Make a new post

  • Issues with Burp scan and authentication

    I've read through many posts here and have not come accross anyone having the same issue as I have. From the Server where Burp is installled, I can browse to the web page I need to scan and look at all options with any current browser (FF, Chrome, IE). When I setup browsers to proxy through Burp and test, I get an authentication pop-up going to this same site. The auth never works with a...

    2 Agent Answers    1 Community Answer
    Feb 27, 2019 08:05PM UTC
  • SSL/TLS Front

    Hello, is it possible for Burp to terminate and SSL connection for a non-SSL destination or resource? Essentially to act as a gateway similar to a load balancer or ingress controller? If so, how is this accomplished? Thank you

    1 Agent Answer    0 Community Answer
    Feb 27, 2019 04:03PM UTC
  • Collaborator - Cannot verify interactions

    I set up a Burp Collaborator on a VPS running Ubuntu 18.04 with the following configuration : { "serverDomain" : "", "workerThreads" : 10, "eventCapture": { "localAddress" : "x.x.x.x", "publicAddress" : "x.x.x.x", "http": { "ports&quo...

    1 Community Answer
    Feb 27, 2019 01:31PM UTC
  • License Keys

    Hi, Where can we find the license key & the validity of the license key on support portal.

    1 Agent Answer    1 Community Answer
    Feb 26, 2019 03:39AM UTC
  • Generating same issues again

    Hi, I did the setup of a project and after running the Active scan I got the issues in the Issue Activity tab of burp suite and I generated the report of the same. Now after few days I ran the same scan again and I realize Burp suite hasn't reported the issues which were reported earlier. So now my question is If I have to run the same scan every month how will I see the same issues for th...

    4 Agent Answers    3 Community Answers
    Feb 25, 2019 07:30AM UTC
  • How do I monitor for collaborator responses after I close Burp?

    Lets say I am testing a site with Burp, and I leave for the day. Lets say two days later, an agent looks at a post I made and triggers some blind XSS. Is there a way to check this using the Collaborator client? If I save my project as a file, and poll a few days later, will it poll for all of the collaborator urls I have generated in that Burp session? If behavior like this is not available, w...

    1 Agent Answer    0 Community Answer
    Feb 22, 2019 06:21PM UTC
  • Application not coming up after configuring proxy settings

    Hi Team, I have configured proxy settings in both Mozilla 65ver browser and Burp suite community edition, (actually we bought license also from our company Trianz yet to install licensed ver)application IP is captured in http proxy tab but under target nothing is showing and website also not coming up. I tried to install CI certificate also. Please advise. Both application and burp suite is ...

    1 Agent Answer    1 Community Answer
    Feb 22, 2019 05:49PM UTC
  • Oauth Login

    Team, Does Burpsuite Enterprise edition support Oauth Authenticated scanning? Thanks!

    1 Agent Answer    0 Community Answer
    Feb 21, 2019 11:08PM UTC
  • Proxy Match and Replace

    hey ! im trying to add automatically "referer" header to intercepted http Request. for some reasons its not working, this is the filter i created in Match and Replace section : Type : Request header Match: ^Referer.*$ Replace: note : the intercepted Request does not have "Referer" header , therefore i need to create one and not replacing the exist...

    2 Agent Answers    1 Community Answer
    Feb 21, 2019 10:18AM UTC
  • Learn Burpsuite Tool

    Hi, I am willing to learn this tool for attacking the website. Can u Please guide me to further steps. Regards, Prabhu.M

    1 Agent Answer    0 Community Answer
    Feb 21, 2019 04:56AM UTC