Bug Reports

Report a bug

  • a weired issue with capuring android https

    i succeeded in intercepting all the android HTTPS traffic by installing burp certificate and it is working just fine . so the android traffic now is being monitored by Burp and every thing is in place , i can see all the successful and failed connections . although there is this one app which keep using the internet with out any error! even with the interception is on ?? you would ex...

    2 Agent Answers    1 Community Answer
    Sep 06, 2019 04:36PM UTC
  • Dark Theme - Buttons in Burp Collaborator not "changing" / "switching" when clic...

    Love the dark theme, but I think it's missing a small component. When using the dark theme, in the Burp Collaborator Client, buttons do not switch or change when I click them (lighter or darker would be fine). Simply put, this makes me think I didn't click the buttons at all... cheers.

    1 Agent Answer    0 Community Answer
    Sep 04, 2019 12:30PM UTC
  • intruder window switching keyboard shortcut not working anymore

    On version 1.x I was able to cycle through intruder windows with command+` on OSX. This now only seems to cycle back and forth between the last intruder window to be opened and the burp main app window,

    1 Agent Answer    0 Community Answer
    Aug 31, 2019 06:00AM UTC
  • Unable to take over parameter in macro

    Hi I'm trying to run multiple requests after one. Request 1) Send a post request with fixed data. -> The result gives me a sessionid Request 2) Send a new post request with the previously received sessionid. I created my macro with their requests and created a custom parameter for the first request. However, I can't seem to find how to reues the cystom parameter.

    1 Agent Answer    0 Community Answer
    Aug 29, 2019 10:32AM UTC
  • Unable to see Issue activity log during Crawling and Audit

    Hi , I am using burpsuite professional 2.1.03 and have configured the test url in burp for Crawling and Auditing. During auditng I see Issue activity tab blank even though there are several issues. Please help Regards Krishna

    1 Agent Answer    0 Community Answer
    Aug 28, 2019 10:28AM UTC
  • Sometimes a complete freeze may happen when editing and issuing a request in the repeater

    I'm not sure what is causing this, but sometimes when editing a request in the repeater and possibly removing the last CRLF characters by keeping pressed the CANC key, after issuing the request all the windows will freeze and CPU usage is fixed at 10/15%. I'm attaching a `jstack -l` dump, i'm not sure how to reproduce it consistently, but usually modifying the ending characters o...

    4 Agent Answers    5 Community Answers
    Aug 25, 2019 04:11PM UTC
  • Custom crawl user-agent cannot contain colon (Burp

    I am setting up a custom crawler function, and tried to set-up a user-agent like this: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:68.0) Gecko/20100101 Firefox/68.0 However, this does not succeed and gives the error-message: "custom user-agent cannot contain colon" Is there any reason for this? Many WAFs try to block scans with user-agents that are know to be used from scan...

    1 Agent Answer    0 Community Answer
    Aug 24, 2019 08:27AM UTC
  • Plugin's Java runnable processes keep running, even after fully removing the plugin.

    Using Burp Suite v2.1.03, runnable Java processes (Java: ScheduledFuture) are not killed or interrupted, when stopping or even removing the plugin. Reproduction: 1. Install Logger++ from the BApp store. 2. Enter an Elasticsearch server under options, this server must be over v 7.0.0 (not compatible for the plugin). 3. Press the start button. You should receive an error, but the runnable proc...

    4 Agent Answers    3 Community Answers
    Aug 22, 2019 02:07PM UTC
  • Use of multiple URL's with plugin: Burp Scan

    Hello Team, We are using Jenkins for Continuous Integration of Burp Enterprise. We are using 'Burp Scan' plugin in the Build section of Jenkins Freestyle Project job creation. When scanning the web application in Burp Enterprise we are able to put 2 URL's for the scan whereas in Jenkins plugin could you please let us know how to use 2 or more URL's. Thanks, Govind

    7 Agent Answers    6 Community Answers
    Aug 22, 2019 12:53PM UTC
  • Chinese issue appears at issues view

    myBurp issues view 。Add a Chinese issue appears, showing garbled characters。 Plasese help me; Thanks ! this is my base64ed image; data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAJAAAAEoCAIAAAA4yu9DAAAACXBIWXMAAA7EAAAOxAGVKw4bAAAMKUlEQVR4nO2dyY4cRRCGo8EyeBiksTFmG2HDYMx2ZT/NC3DnwBUegRua5zAICSFxQYhHQAIECOQHQCBxNpLlJ7CaQzM1NZmRkUtFLX/3/526s6qisvKvzIxca7Ver4Xg8NDcESB1UDAwKBgYFAwMCgYGBQODgoFBwcCgYGD4CG...

    1 Agent Answer    0 Community Answer
    Aug 20, 2019 06:55AM UTC