How Do I?
How do I generate a report after scanning without issue found
Dear Support, We have purchased a Burp Suite pro. I used its vulnerability scaner to scan our web server. I could not generate report when no issue found after scanning. I need it to show our management as a proof. Can you advise if it's possible and how to do it if it can be done. Thanks and best regards! Zhang Tao LGA Telecom1 Agent Answer 0 Community AnswerJan 28, 2015 12:42PM UTC
How Do I Supply A Preconstructed Target Site List?
The BURP documentation says that I should turn the proxy on and then do a bunch of work on my Web app in order to build a list of URLs to put in the Target Site list. I do this and it works fine. I'm concerned, however, that I might not be adding enough URLs to this list by doing this. Let's say I have a list of all the URLs my Web app responds to. Can I manually add these URLs to the...1 Agent Answer 0 Community AnswerJan 21, 2015 06:16PM UTC
Testing through Cisco Smart Tunnel
Has anyone ever tested an application that required them to use Cisco's Smart Tunnel SSL VPN? This is the quick one liner from Cisco discussing this solution: "A smart tunnel is a connection between a TCP-based application and a private site, using a clientless (browser-based) SSL VPN session with the security appliance as the pathway and the security appliance as a proxy server." ...1 Agent Answer 1 Community AnswerJan 19, 2015 09:13PM UTC
Saving Burp sessions
Is there a way in Burp to save a set of captured messages and play them back later with fuzzing inserted? That is, once we capture a series of messages to a server, we wish to be able to perform fuzz testing. and we wish to be able to repeat the test later without having to capture and configure the test again. I don't see any way to save a session. There is a 'save Attack' ...1 Agent Answer 0 Community AnswerJan 15, 2015 08:23PM UTC
How to run multiple session while scanning application through Burp?
While the scanning the application through Burp, I found that if I use multiple threads it is resulting to session errors like (The requested session id appears to be invalid.You may have more than one Task Manager window/tab open) but if I use single thread the scanning is too slow. Can anyone explain me how to assign different session id's to different thread so that I can scan throug...1 Agent Answer 0 Community AnswerJan 12, 2015 10:39AM UTC
Normally Burp software indicates when you release a new version. However, since the beginning of the year, I haven't had any alert of a new version. Is there something to configure? Thanks and best regards, Rachel2 Agent Answers 1 Community AnswerNov 27, 2014 11:23AM UTC
Dynamic Websites / Trial
I was wondering if your tool supports dynamic web sites. Furthermore, some of our website's pages can only be accessed using IE. We currently test our website using IE11, so that version is preferred. Would it be possible to download a trial version of the security scanner it would be even better, as we have tried other tools and all failed due to our websites constraints. Kind regards...1 Agent Answer 0 Community AnswerNov 27, 2014 11:06AM UTC
We're looking into possibly purchasing your product. Is there a good training course or a detailed technical manual in using the full functionality of Burp Suite Pro? Thanks Jane2 Agent Answers 1 Community AnswerNov 27, 2014 10:59AM UTC
Burp CA Certficate
Hi Burp Support, I’m having trouble configuring my proxy and allowing my browser (Chrome or Safari) to access the internet. I think I need to download the Burp CA certificate in order to fix this issue. However, all the "download our CA" links take me back to the description about how to configure my browser. I’m not sure how to install Burp’s CA certificate as a trusted root in m...1 Agent Answer 0 Community AnswerNov 27, 2014 10:41AM UTC