How Do I?

Make a new post

  • Burp report

    Why report is different for following scenario: a. Scan without any pause or interrupt. b. Scan with few pause or burp restart

    2 Agent Answers    1 Community Answer
    Dec 14, 2019 02:29PM UTC
  • burp collaborator

    When we perform automated or manual scan then , the collaborator payload that burp inject to target application then is it possible that target application hold the payload or delete that payload after closing the scan?

    1 Agent Answer    0 Community Answer
    Dec 14, 2019 02:28PM UTC
  • Application login

    Hi, I am using burpsuite Enterprise version 1.4.04. currently we are in evaluation phase of burpsuite as automatic vulnerability scanner for our products. Our most of product needs java script enabled to login. So we would like to know whether is login possible for java script enabled website? if yes , then how we can achieve this. if no, then by when it will be supported

    1 Agent Answer    0 Community Answer
    Dec 14, 2019 03:44AM UTC
  • Burp Infiltrator Patching Fails On Webgoat 6.0.1

    wget $ md5sum WebGoat-6.0.1-war-exec.jar 8071e4be1c3d8b6dd6520b2c63031eca WebGoat-6.0.1-war-exec.jar java -verbose -jar burp_infiltrator_java.jar WebGoat-6.0.1-war-exec.jar <snip>... [0.256s][info][class,load] net.portswigger.infiltrator.patcher.c source: file:/data/home/Desktop/training/w...

    1 Agent Answer    0 Community Answer
    Dec 11, 2019 03:17PM UTC
  • 30 day tiral

    I have requested the 30 day trial multiple times with no response at all. Please explain the issue with the trial license being sent? Thanks Bud

    1 Agent Answer    0 Community Answer
    Dec 10, 2019 06:49PM UTC
  • Since new version of Burpsuite system pauses during scan

    since upgrading to Burpsuite 2. version I constantly get pauses during crawling/scanning, as I am not always monitoring the system this tends to make scans run extremely long, is there a way to stop this from pausing?

    1 Agent Answer    1 Community Answer
    Dec 10, 2019 06:48PM UTC
  • GHte my license activation reset

    Good Day, Our current Burp virtual machine has crashed and we do not have a backup. Please could you assist me in resetting my BURP license activation as I have reinstalled BURP on a new virtual and cannot activate the current license.

    2 Agent Answers    1 Community Answer
    Dec 09, 2019 01:28PM UTC
  • any way to bypass preflighted XHR request in a CSRF attack?

    Hello, i found a website where they have as a CSRF protection CORS and a short custom header (without token - just a header that is for all users). i found a way to bypass the CORS protection but when trying to reproduce the vulnerability i need to add the custom header too. The header is like --> something: v2 So it doesn't have a token or anything, but when adding it in the XHR...

    1 Agent Answer    0 Community Answer
    Dec 09, 2019 11:20AM UTC
  • DOM-based XSS

    Hi , I got the message like this : The application may be vulnerable to DOM-based cross-site scripting. Data is read from location.hash and passed to $() The response is : var id = location.hash.replace('#', ''); $elem = $( '[data-' + PLUGIN_NAME + '-id="' + id + '"]' ); How can I exploit this ? Thanks so muc...

    1 Agent Answer    0 Community Answer
    Dec 09, 2019 06:36AM UTC
  • I have problem with the burp suite

    What's wrong with this program? Can someone help me? How can I fix it? Starting attack... There was an error executing your Python script. This is probably due to a flaw in your script, rather than a bug in Turbo Intruder :) If you think it is a Turbo Intruder issue, try out this script: For ...

    2 Agent Answers    1 Community Answer
    Dec 07, 2019 07:38AM UTC