How Do I?

Make a new post

  • Web Security Academy Issue

    I'm reading the Web Application Hackers Handbook 2nd Edition. When i go to any of the "Try It!" links, all of them takes me to the academy home page. I'm not able to directly access each lab the page is asking me to try. For instance "http:/mdsec.net.auth/16/" or "http:/mdsec.net.auth/46/" and all the other links with different number's at the end of th...

    1 Agent Answer    0 Community Answer
    Apr 30, 2019 06:48PM UTC
  • Burp Suite Enterprise License activation issue

    Hello, We have installed trial version of Burp Suite Enterprise version successfully. When I am trying to active the License it is giving this error "Failed to upload license: Unable to communicate with online activation service, please check your proxy settings." The proxy is setup correctly as I am able to access the internet without any issue. Please advise to resolve this is...

    2 Agent Answers    1 Community Answer
    Apr 30, 2019 12:17PM UTC
  • Not able to configure burp with firefox - Received fatal alert: access_denied

    I am trying to setup my burp with firefox for the first time. Steps I followed: - Changed the proxy in Firefox to 127.0.0.1:8080 - Removed NO Proxy for "localhost, 127.0.0.1" - Imported cert.der to firefox certificates section. Trying to intercept request, getting following error in alert tab of burp: javax.net.ssl.SSLException: Received fatal alert: access_denied Received f...

    2 Agent Answers    1 Community Answer
    Apr 30, 2019 08:09AM UTC
  • Freddy Deserialisation Bug Finder- unable to load extension

    Hi, I have tried installing Freddy Deserialisation Bug finder from Bapp Store as well as manually. I see it installed and I checked respective box in the Extensions Tab. But I am unable to locate the Freddy Tab in my Burp. PS: I am using a PRO Version. Any help will be greatly appreciated. Thanks, Vic

    1 Agent Answer    0 Community Answer
    Apr 30, 2019 05:51AM UTC
  • license

    Hi, I'm trying to move my license from an old BurpEnterpriser server to a new one. When I turned off the old one and upload the license to the new one I have a message like this "Requires activation". Where/How can I activate again? Please your help ASAP. Kind regards

    2 Agent Answers    0 Community Answer
    Apr 29, 2019 09:24PM UTC
  • Burp suite 1.7.37 - create burp certificate less than 39 month

    Hello, I install burp ca certificate in android 7.0 emulator on /system/etc/security/cacerts/. The certificate appears in the android phone on system certificates. The problem is that when i enter any website with ssl i encounter the follow error: NET::ERR_CERT_VALIDITY_TOO_LONG This error appears since the certificate issued to more than 39 month. Is there a way to create burp certificate l...

    1 Agent Answer    0 Community Answer
    Apr 28, 2019 01:00PM UTC
  • Chrome Proxy On Localhost Does Not Intercept - Workaround

    I noticed this on Chrome v.72, and no matter what I tried, anything running on localhost would not get intercepted and picked up in Burp Suite scope. After some serious digging, I found an answer deep in the bowels of the interwebs. I posted this with images on StackOverflow here. https://stackoverflow.com/questions/55616614/burp-interception-does-not-work-for-localhost-in-chrome/55850268#55850...

    1 Agent Answer    0 Community Answer
    Apr 25, 2019 01:30PM UTC
  • Can't intercept http requests

    All the http history is showing however I could only intercept websocket messages.

    2 Agent Answers    1 Community Answer
    Apr 24, 2019 12:39PM UTC
  • Mac OS temp file location

    Hi, I can't find Burp Suite temp file location. It says that location is /var/folders/m8/... But I can't find a folder named var or m8. Can you tell me how to find these files? I'm using Mac OS.

    1 Agent Answer    0 Community Answer
    Apr 24, 2019 07:18AM UTC
  • How can I automate manual verification of requests through Repeater and Intruder

    Hi, Just wanted to know if there is a way to automate the manual testing of requests which I do through repeater and Intruder tool. I use repeater and intruder module to manually test certain requests by giving some malicious inputs. So is there a way, I can automate it so that I don't have to manually run them over and over again

    1 Agent Answer    0 Community Answer
    Apr 23, 2019 12:28PM UTC