Support Center

Burp Community

See what our users are saying about Burp Suite:

How do I?

New Post View All

Feature Requests

New Post View All

Burp Extensions

New Post View All

Bug Reports

New Post View All
Documentation

Burp Suite Documentation

Take a look at our Documentation section for full details about every Burp Suite tool, function and configuration option.

Full Documentation Contents Burp Projects
Suite Functions Burp Tools
Options Using Burp Suite
Extensibility

Burp Extender

Burp Extender lets you extend the functionality of Burp Suite in numerous ways.

Extensions can be written in Java, Python or Ruby.

API documentation Writing your first Burp Suite extension
Sample extensions View community discussions about Extensibility

How Do I?

Make a new post

  • Interception Not Working.

    Websites aren't loading and I am not receiving the request in the interceptions tab. URLs appear in the history, I have the settings set to default; I have no idea what's wrong, obviously.

    4 Agent Answers    3 Community Answers
    Oct 11, 2018 02:25AM UTC
  • Burp scan time duration

    Hello Team, Is there any way to calculate the live scan time or duration, I mean how much time will take for the scan. please implement this in the scanner, that people get to know how much will take in the live scan

    1 Agent Answer    1 Community Answer
    Oct 10, 2018 02:09PM UTC
  • Second User

    Hi. Is there a way to create a second user for logging in to https://portswigger.net/users/youraccount? Actually we only have edv@reval.com. Thanks

    2 Agent Answers    1 Community Answer
    Oct 05, 2018 09:40AM UTC
  • Importing Certificates

    When attempting to import a certificate and key in DER format the following message appears. "Failed to import certificate: java.security:InvalidKeyException: IO Exception: DERInputStream: getLength(): lengthtag = 127. to long I am clueless which way to turn as the message seems more like it is directed to a developer with ...

    4 Agent Answers    4 Community Answers
    Oct 04, 2018 05:36PM UTC
  • Can not using burp when application added Clouldflare

    when i try to run my application , i got : Your connection is not private Attackers might be trying to steal your information from x.com (for example, passwords, messages, or credit cards). Learn more NET::ERR_CERT_AUTHORITY_INVALID Help improve Safe Browsing by sending some system information and page content to Google. Privacy policy after that i try to by pass to login application ,...

    1 Agent Answer    0 Community Answer
    Oct 04, 2018 07:51AM UTC
  • Change parameter submitted during ActiveScan

    After migrating to 2.0+, where can we modify the values submitted (POST) during an Audit scan (e.g. Peter Winter, etc.)

    2 Agent Answers    1 Community Answer
    Oct 02, 2018 03:04PM UTC
  • Static Application Security Testing

    Our team has been discussion implementing SAST for our PHP code to help identify issues earlier in the development cycle. Would please provide a "How To", diagram, helpful hints etc on how we would accomplish this task? It would be great if we could integrate with our ticket, and continuous integration engines as well.

    1 Agent Answer    0 Community Answer
    Oct 01, 2018 07:43PM UTC
  • Burp Collaborator question

    Hello, I hold a licence for Burp PRO and have a question about Burp Collaborator. A few days ago I ran some active scans against an application (some scans were run against a "request support/add ticket" kind of function). The scans completed, and I closed Burp. Now we all know that the active engine scanner issues payloads containing Burp collaborator's hosts. Today, I s...

    2 Agent Answers    3 Community Answers
    Oct 01, 2018 09:15AM UTC
  • How to intercept info comming threw the command prompt window, not http?

    Hi, I am running an x-client on my pc and want to use Burp to intercept the info for a Cluster bomb attack. I can set up Burp to intercept data from a website but how do I set it up to intercept data that just runs in a CMD window like my x-client does?

    2 Agent Answers    1 Community Answer
    Oct 01, 2018 08:25AM UTC
  • Crawler throttle options

    Hello, The old spider engine has throttle between requests options but I cannot find them with the beta version Crawler?

    1 Agent Answer    0 Community Answer
    Sep 28, 2018 03:20PM UTC