Support Center

Burp Community

See what our users are saying about Burp Suite:

How do I?

New Post View All

Feature Requests

New Post View All

Burp Extensions

New Post View All

Bug Reports

New Post View All

Burp Suite Documentation

Take a look at our Documentation section for full details about every Burp Suite tool, function and configuration option.

Full Documentation Contents Burp Projects
Suite Functions Burp Tools
Options Using Burp Suite

Burp Extender

Burp Extender lets you extend the functionality of Burp Suite in numerous ways.

Extensions can be written in Java, Python or Ruby.

API documentation Writing your first Burp Suite extension
Sample extensions View community discussions about Extensibility

Bug Reports

Report a bug

  • Failed to parse the content of the page for SQL Injection indications in the passive scanner

    Suppose the following scenario: I access a particular page, and in the body of the page you have a MySQL syntax error with the SQL query. The base request is always the same, it already has the SQL query in the body. Isn't the passive scanner supposed to pick up the info and indicate that may exist a SQL Injection based on this information or at least there is sensitive information bein...

    1 Agent Answer    1 Community Answer
    Mar 17, 2015 04:17PM UTC
  • File dialog paths across the application

    Burp seems to maintain the same file path through-out the application. If would be useful if the last save/restore file location was stored separately to the load intruder payloads path.

    1 Agent Answer    0 Community Answer
    Mar 17, 2015 11:40AM UTC
  • Upgrading Burp doesn't keep extensions

    Everytime I upgrade Burp, I have to set the environment paths, and re-download the BAPPs. Is there a config file somewhere that can be configured to avoid this?

    2 Agent Answers    1 Community Answer
    Mar 17, 2015 11:37AM UTC
  • java.sql.SQLException: Invalid column index not detected by active scanner

    Hi, while working on an application with the active scanner of Burp 1.6.12 a lot of possible SQL injections like: -------------- SERVICE NOT AVAILABLE. Please refer to your system administration<br>FooException: Exception thrower:<br>Attributes: class<br>serialVersionUID = -8879262741052573073<br>broker = interface

    2 Agent Answers    2 Community Answers
    Mar 16, 2015 03:28PM UTC
  • recieving smart card error "card was detected but not the right one..."

    I just started to receive a smart card error when attempting to load my smart card certificates to burp. I have been using the p11-capi.dll successfully for some time. The error I receive from the card manager follows. "A smart card was detected but is not the one required for the current operation. The smart card you are using may be missing required driver software or a required certifica...

    1 Agent Answer    0 Community Answer
    Mar 13, 2015 06:21PM UTC
  • Bug in Site map tab while showing only items in scope.

    While showing only items in scope, if we activate the flags "Show only requested items" and "Show only parameterized requests" and disable them again, the Site map no longer show only items in scope, but show other requests. This happens in the latest version of Burp (1.6.12)

    4 Agent Answers    5 Community Answers
    Mar 13, 2015 02:18PM UTC
  • Escaping Help

    Hi, Not sure if this should fall under "Bug Reports" or "Feature Requests" so please move if needed. Anyway, when looking at Burp's built in help (by clicking on the "?" mark) it pops up in a small window. I can not find a way to close this window. Instead I have to click on the icon in the top right hand corner to "Show full help" and then close ...

    2 Agent Answers    2 Community Answers
    Mar 07, 2015 02:02AM UTC
  • Duplicate type IDs?

    Hey, I'm not sure if this is a bug or standard functionality, but some clarification would help. In recent releases we've seen some type IDs that are the same for different issues. <type>134217728</type> <name>Content Sniffing not disabled</name> <type>134217728</type> <name>Browser cross-site scripting filter misconfig...

    1 Agent Answer    1 Community Answer
    Mar 05, 2015 12:38PM UTC
  • Maximising Burp

    I'm having a bug with Burp on a multi-monitor setup where it won't maximize and take advantage of the full screen. See the image below for an explanation - Burp will only maximize to the bottom ~90% of the screen. Clicking maximize (green button) resizes the window to this position (still leaving area at the top) while shrinking the window and trying to drag it to the top of the scree...

    1 Agent Answer    0 Community Answer
    Mar 05, 2015 05:05AM UTC
  • Intruder results: copying a column with Control-Click in Pro version

    From the Intruder documentation: "You can reorder the table's contents by clicking on any column header [...] You can copy the contents of a column by Ctrl-clicking the header [Pro version]". Bug #1: A column is reordered everytime its title is clicked, EVEN IF the "Control" key is pressed at the same time. Impact => copying the content of a column will alter its ord...

    3 Agent Answers    1 Community Answer
    Mar 04, 2015 09:21PM UTC