How Do I?
I see all the scan results in the issue activity tab or site map tab. How to download all the report
Hi Team I would like to download all the issues reported from the active scan as a report. Currently I have 50+ issues reported in the screen but I could not find an option to download all of them. Thanks !1 Agent Answer 0 Community AnswerApr 19, 2018 09:43PM UTC
Response doesn't show any piece of source code of intercepted website.
Hey Burp, my Community Burpsuite's response box under the proxy and repeater tab doesn't show any of source code of the website that I intercepted. It only show the headers of the website. How can I fix this?1 Agent Answer 0 Community AnswerApr 19, 2018 02:30PM UTC
"failed to save project burp.czi"
Hey. When you save the project, here comes this error, tell me how to fix it error screenshot http://prntscr.com/j7d1wd1 Agent Answer 2 Community AnswersApr 19, 2018 01:06PM UTC
Use Firefox browser as a proxy.
This may not be correct platform to ask the question. I had given a presentation on Burp suite, One question came to me that "Why Firefox is preferred browser to set proxy with ? " What to answer this question ? I am sure that I will get technical and detailed answer for this. Note : I know that Burp can be configured with other browsers as well. :)1 Agent Answer 1 Community AnswerApr 18, 2018 11:41AM UTC
How to know if spider has been done completely.
There are only 2 states of spider "Spider is running" or "Spider is paused". How I would be knowing that crawling has been completed ? Since it is not toggling automatically.1 Agent Answer 0 Community AnswerApr 17, 2018 08:45AM UTC
How can I uninstall Burp's extension ? I dont need a few now
Recently we had a pen test cycle to run, I had install a few extenders through Bapp store, Now I don't need them. From where I can uninstall them ? I don't want them to be shown in grid anymore.1 Agent Answer 0 Community AnswerApr 16, 2018 12:21PM UTC
How to generate custom Vulnerable Scanning Report?
How to generate custom Vulnerable Scanning Report?1 Agent Answer 0 Community AnswerApr 16, 2018 09:38AM UTC
Potential False Positive DOM Based XSS - 2
Hi, Burp reported this below lines as Dom Based XSS vulnerability with Severity: High, Confidence: Firm. I didn't find a way to exploit this lines within a scenario since document.body.classList.add function is used only for creating body tags within class name. (E.g. on the inspector result is <body class="PAYLOAD">). Since this function is escaped characters like " a...1 Agent Answer 0 Community AnswerApr 14, 2018 09:07AM UTC
Out of Band vulnerabilities and Collaborator
Good Afternoon, I am curious about how vulnerabilities for out-of-band issues are being presented in Burp. When looking at a finding for this, my confusion comes from the difference between the 'base request' and the Issue 'request'. Sometimes there are extreme differences. For example, the base request might be for a mutipart/form-data request like this: POST /user/98...3 Agent Answers 2 Community AnswersApr 13, 2018 09:57PM UTC
Burp Seems not able to crawl HTML in angular js application.
I am crawl an application which is created my angular js. All Burp spider is fetching Post, Get APIs and .js files, What about html pages ? How to effectively crawl an application.2 Agent Answers 1 Community AnswerApr 12, 2018 06:39AM UTC