How Do I?
Since iOS 10 can't trust Burp anymore, recommended alternatives?
Since iOS 10 can no longer really "trust" the Burp Suite certificate, does anyone have any alternatives that free? While it shows up as trusted in iPhone, it still marks it as not secure when browsing to a site that uses the trusted burp certificate. I saw someone mention use a wildcard cert, but letsencrypt doesn't support it. Just trying to figure out an alternative to being able ...1 Agent Answer 1 Community AnswerMar 31, 2017 03:57PM UTC
I am not able to activate my burp license after formating my laptop.
My laptop had windows 10 pro burp installed. After formatting I installed windows 10 single language and tried to activate burp but no luck, it says "activation failed no more activation for this license". But burp was activated on this pc Kindly suggest what to do in this case. Is there any way that I can activation burp on my PC? Is my license going to waste?1 Agent Answer 0 Community AnswerMar 31, 2017 05:40AM UTC
Burp shows super tiny window&letters
Hi, When opening Burp on my Dell 5510 it won't maximize and it shows tiny window&letters. What settings should I change to see Burp at normal size and not in miniature. Also, I am not able to install any new updates as it freezing at 100% download. The download will not complete.1 Agent Answer 0 Community AnswerMar 31, 2017 02:31AM UTC
Change part of a URL in a project
Hi, We have extensively done browsing to record as most URLs as possible for a particular website, and tested that version, which resides in: www.mydomain.com/uat/application. Now we've moved the same website to another URL, and we access that through: www.mydomain.com/preprod/application. The website, hyperlinks, pages, and applications are the same, but they are placed in another a...1 Agent Answer 0 Community AnswerMar 28, 2017 06:20PM UTC
Hello, I have corporate license for Burp Suite Professional. Which product do I need to download to activate it? Trial version of Burp Suite professional? Will I be able to activate Pro license on it? Or just download Free edition, and activate license? Thank you.2 Agent Answers 1 Community AnswerMar 28, 2017 10:49AM UTC
Manipulate Header Request Parameter in Extension
Hi, I want to build up a automatic test system for a json api. My plan is as follows: Initially I get a fresh login token. Then i get into the proxy (processProxyMessage) and to replace the token with my freshly acquired login token. My problem is that I cannot update the content of my request. The token just doesnt change. Pseudocode: public void processProxyMessage(boolean messageIsRe...1 Agent Answer 0 Community AnswerMar 27, 2017 04:09PM UTC
SiteMap & Spider Out-Of-Scope Entries
Hi, I have an application that I'm testing with thouthands maybe more of urls like example.com/[0-9]+ and I don't want to go thru them all not in Sitemap/Proxy/Spider so first I setup a rule in Scope Exclude with ^example\.com$ ^/[0-9]+.* and I have this settings in: Spider/Control/Spider Scope: Use Suite Scope Project Options/Connections/Out-Of-Scope: Use Suite Scope and Drop ...1 Agent Answer 0 Community AnswerMar 26, 2017 10:01PM UTC
How to switch ip addresses per 6 requests?
Hi, I am trying to run a attack on a login page. The problem is that it locks me out every 6 requests. Is their a way to change an IP on every 6 requests? I have tried the IP address header extension but when I run it does not work, does anyone know of a way to do what I need? A way to change an ip in burp suite every 6 tries ? Does the extension I listed work for what I am trying to do? If th...1 Agent Answer 0 Community AnswerMar 26, 2017 06:32AM UTC
set up burp suite on a remote host in order for
Hello support... I am looking to have burp suite set up on a remote host in order and our teams connect using a web browser if possible to run pentests on webapps? Thanks, Sam1 Agent Answer 0 Community AnswerMar 25, 2017 01:34AM UTC
Hi, Burp offers macro to auto login. I was able to record macro, and the macro will add new cookies in the cookie jar, and the subsequent requests use the new cookies. However, the subsequent requests need one additional string in the request header (not in cookie), otherwise the requests will fail. This additional string, (for CSRF attack) is in the response during the login process. ...1 Agent Answer 1 Community AnswerMar 24, 2017 04:07PM UTC