Support Center

Burp Community

See what our users are saying about Burp Suite:

How do I?

New Post View All

Feature Requests

New Post View All

Burp Extensions

New Post View All

Bug Reports

New Post View All
Documentation

Burp Suite Documentation

Take a look at our Documentation section for full details about every Burp Suite tool, function and configuration option.

Full Documentation Contents Burp Projects
Suite Functions Burp Tools
Options Using Burp Suite
Extensibility

Burp Extender

Burp Extender lets you extend the functionality of Burp Suite in numerous ways.

Extensions can be written in Java, Python or Ruby.

API documentation Writing your first Burp Suite extension
Sample extensions View community discussions about Extensibility

How Do I?

Make a new post

  • Edit Issue Definitions

    Hi! I would like to know if there is a way I can edit the default scanner issue definitions. I'd like to change them according to the needs of my organization. Thank you.

    1 Agent Answer    0 Community Answer
    Nov 17, 2017 12:09PM UTC
  • 1.7.28 Freezing When Installing Plugins

    Hi there, I'm running Kali (latest version/updates installed) and under 1.7.27, plugins will install without issue. However, under 1.7.28, installing plugins will cause Burp to hang. Typically this happens when installing 2-3 plugins...the first plugin may install without issue (e.g., from a clean install -- sorting plugins by popularity -- retire.js installs, but activescan++ causes Bur...

    1 Agent Answer    1 Community Answer
    Nov 16, 2017 09:30PM UTC
  • Remember GUI state including column sizing

    Hi, is there any way to make Burp remember the exact GUI state that it had when last used? With GUI state I'm referring e.g. to the sizing of columns especially inside the proxy history as well as in extensions such as Flow. Each time I start Burp and reopen the project I'm working on, I have to readjust column sizing to fit my needs. E.g. decrease width of columns such as "Ex...

    1 Agent Answer    1 Community Answer
    Nov 16, 2017 01:43PM UTC
  • Bypass racaptcha on website login

    How do i bypass recaptcha on website login/signup page at the time of making intruder attack?

    1 Agent Answer    0 Community Answer
    Nov 12, 2017 11:13PM UTC
  • Authenticated Scanning

    Hi, I'm security engineer and want to do an authenticated scan on my organization websites. I already have a test account to perform the scan. We usually do scans and pen testing on the websites to find the vulnerabilities without any credentials. I want to perform the scan with credentials to make sure my websites are safe. Can anyone please help me on this? Thanks in advance. -...

    2 Agent Answers    2 Community Answers
    Nov 10, 2017 09:25AM UTC
  • Saving options

    I created a temporary project, saved my configured options as a User Options, then I load the JSON and they're not in there. I have to turn off Burp Collaborator, have to change my Target view settings, have to reconfigure Proxy History so it works. Why can't Burp save its settings? This has never worked since v1.7 came out. Burp used to just work. Now it's a great way to trigger on...

    1 Agent Answer    0 Community Answer
    Nov 09, 2017 11:27PM UTC
  • Capturing and modifying javascript in the server response before page is displayed

    Hi, I'm trying to modify the Javascript code in the server response before it reaches my browser, but the problem I'm having is that the page loads in the browser while the Javascript is displayed on the Intercept tab. When modifying the Javascript and forwarding it, the browser still displays the page with the unmodified code. Why is that?

    1 Agent Answer    0 Community Answer
    Nov 09, 2017 05:04PM UTC
  • How to i pause request , edit the request and forward it back?

    I am trying to pause a request edit the request and forward the request back to web server. Can you can tell me how to do so. Also web pages request are not listing in Burp suite if intercept is on, when i off the intercept, requests are been captured i am not understanding this behavior of burp suite. Help me i am performing security testing on web application.

    1 Agent Answer    0 Community Answer
    Nov 08, 2017 10:33AM UTC
  • DNS Configuration for private collaborator server

    I have started setup the private collaborator server on Digital Ocean, but I'm very new to DNS configuration stuff. The Burp collaborator health check shows "Verify DNS Interaction" and "We communicated with the collaborator, and appeared to successfully record events, however when we attempted to retrieve the interaction records the expected records weren't present.&q...

    4 Agent Answers    3 Community Answers
    Nov 08, 2017 10:16AM UTC
  • Burp Invisible Proxy Mode

    So I have been reading over the last week how to setup burp with invisible/transparent proxy. I have a thick client on a Linux server. I have burp running on kali. I changed a route on the linux client so that any https traffic is sent to the kali/burp server. Via tcpdump i can see that the https traffic is making it to the burp server and that burp is listening on port 443 as I configured bur...

    3 Agent Answers    2 Community Answers
    Nov 07, 2017 12:04AM UTC