How Do I?

Make a new post

  • Lab: HTTP request smuggling, basic TE.CL vulnerability

    Hi, When following the solution to this lab, the second request results in bad request error and not the expected result of the lab. I have tried it with Burp and curl with the same result. Not sure what I am missing? Can you please help? thanks.

    2 Agent Answers    1 Community Answer
    Aug 28, 2019 07:06PM UTC
  • Automatically Spider as i browse in Burp 2

    I know you can right click on a site in the site map and have it crawl/spider the site and actually request pages. but how do i get it to do this as I browse? the passive crawl function lists the links in site map but they are gray and have no responses which i means they weren't requested. in burp one this was pretty easy but i am having a hard time of it now in burp pro 2.1.03

    1 Agent Answer    0 Community Answer
    Aug 28, 2019 01:23PM UTC
  • Crawl and Audit Scan with Authentication

    I'm using Burp Pro and configured New Scan with Crawl and Audit with Application Login , but Crawl and Audit is only happening without authentication , scanner is not doing an authenticated Crawl and Scan inspite of giving auth credentials during configuration. Am I missing anything over here

    1 Agent Answer    0 Community Answer
    Aug 28, 2019 09:37AM UTC
  • License

    Hi, im paid for license, but not received code yet. Mail kolynama11@gmail.com. https://i.imgur.com/xJeZGVo.png

    1 Agent Answer    0 Community Answer
    Aug 27, 2019 03:10PM UTC
  • Password seen in clear text on Burp tool

    Hi , My website has login form. I have entered username and password and intercepted in Burp proxy. Password is seen in clear text in request body Is this vulnerability ? Also, please explain how is this possible ? Is yes, as a PEN tester what is the recommendation to be given for encrypting password in the request body?

    1 Agent Answer    0 Community Answer
    Aug 27, 2019 12:48PM UTC
  • Burp with SSO which only works on organisations proxy

    I am not able to change proxy, if i change proxy i cant access the site so no testing can be done using burp. What can be done?

    1 Agent Answer    0 Community Answer
    Aug 26, 2019 06:06PM UTC
  • Payload Now showing

    I need to set more than 2 payload set, but I can't define more than 2 payload set.

    1 Agent Answer    0 Community Answer
    Aug 23, 2019 08:39AM UTC
  • Unable to connect the DB

    First time is allowed to login. However second time try to login using the same credential. It's not allowed login. Used to the default database for burp suite.

    1 Agent Answer    0 Community Answer
    Aug 23, 2019 07:00AM UTC
  • Ho do I perform Load/Performance testing using Burp suite

    Ho do I perform Load/Performance testing using Burp suite

    1 Agent Answer    0 Community Answer
    Aug 23, 2019 06:13AM UTC
  • Active Scan from 1.7

    I used to be able to click on scanner, and browse around the webapplication and vulnerbilities would populate inside of site map. But in 2.0 This seems to be different. I tried all Live Task options and nothing populates in site mapping

    1 Agent Answer    0 Community Answer
    Aug 21, 2019 06:52PM UTC