Support Center

Burp Community

See what our users are saying about Burp Suite:

How do I?

New Post View All

Feature Requests

New Post View All

Burp Extensions

New Post View All

Bug Reports

New Post View All

Burp Suite Documentation

Take a look at our Documentation section for full details about every Burp Suite tool, function and configuration option.

Full Documentation Contents Burp Projects
Suite Functions Burp Tools
Options Using Burp Suite

Burp Extender

Burp Extender lets you extend the functionality of Burp Suite in numerous ways.

Extensions can be written in Java, Python or Ruby.

API documentation Writing your first Burp Suite extension
Sample extensions View community discussions about Extensibility

Bug Reports

Report a bug

  • New Scan says out of scope for in-scope URL

    Hi there, Burp 2.0.3 is telling me that the scope URL I'm defining for a new scan (when clicking the button in the dashboard) is out of scope. URLs to scan: Currently defined as scope (advanced scope control) in the "target - scope" tab: Protocol: Any Host or IP: Port: (empty) File: (empty) It only happens when I click "new s...

    5 Agent Answers    5 Community Answers
    Sep 04, 2018 09:40AM UTC
  • [Beta v2.0.03beta] Exporting report - report title cache not working

    Hi, A small bug it seems. When creating a report, in the reporting wizard window, when customising the report title and entering a title starting with the same letters/words that you used for previous reports, you will be presented with previous titles to choose from... however it is not possible to select one of those previous titles proposed. You have to type everything again. Not a big i...

    1 Agent Answer    0 Community Answer
    Sep 04, 2018 05:26AM UTC
  • [Beta v2.0.03beta] New Scan does not seem to ever finish

    Hi, following up on my previous bug report. I am running the latest burp beta on a fully updated OSX and JAVA environment. I have started a new scan against 2 URLS from the same domain and towards the end of the scan, probably 90%, the time remaining went from 2 minutes to 24855 days... And it has stayed like that for the last 20 minutes. There are a lot of findings already, so it works, but...

    1 Agent Answer    0 Community Answer
    Sep 04, 2018 05:16AM UTC
  • [Beta v2.0.03beta] Warning when starting Burp on OSX

    Hi, Just started testing the new beta and I really like the new dashboard look. I am running it on a fully updated OSX with fully updated JAVA. Everything seems to work fine (although slow, and I will add another bug entry). However, when I start burp using java -jar on a command prompt from a user with admin privilege (but not using sudo java -jar... not sure if that's required), I am ...

    1 Agent Answer    0 Community Answer
    Sep 04, 2018 05:12AM UTC
  • Edit Running Live Audit Creates New Live Audit

    Hi, In Burp Suite Pro v2.0.03beta if I edit a currently running Live scan's configuration, when I save it, a new Live audit appears in the task list and now any request I make goes to both running tasks, thereby duplicating the number of scans I'm running. Steps to reproduce: 1. Click on Settings for an existing Live audit 2. Click on Scan configuration 3. Select a scan config...

    2 Agent Answers    1 Community Answer
    Sep 03, 2018 01:08PM UTC
  • Burp v2.0.03beta - Session Handling Rule can't be applied to Spider

    Iv'e tried to Edit the Session Handling Rule to include Spider in Scope, but without success. Every time I check it and press OK, it disappears. Since my app has a complex session management, I'd like my own session rule instead of the default username+password (since I have to enter PIN and that option is not present at the moment). Is this a feature, or bug?

    1 Agent Answer    0 Community Answer
    Sep 03, 2018 01:06PM UTC
  • FireFox - Chrome -Pages dont load

    Burp Suite Community Edition: FireFox 61.0.2 (64bit) Chrome : Versión 68.0.3440.106 (Build oficial) (64 bits) Antivirus : Off Firewall: Off Windows 7 64bits I followed the instructions to setup Burp from:

    1 Agent Answer    0 Community Answer
    Sep 01, 2018 12:06AM UTC
  • Burp 2.0 beta REST API key issue

    When creating a new scan with an API key: POST<key>/v0.1/scan ... It is not possible to retreive the task without the API key if the 'Allow access without API key' option is checked GET 400 Bad request The inverse is also true. If you create a scan without an API key: POST

    1 Agent Answer    1 Community Answer
    Aug 31, 2018 01:49PM UTC
  • Burp 2.0 beta scan_status REST API issue

    I created a new scan through the new REST API and then checked the status after the scan was complete. The task in the dashboard says 'Finished' with eight requests and eight errors but the REST API returns 'auditing' for the 'scan_status'. Shouldn't it be 'failed' or 'succeeded'? Here is the raw JSON response: { "task_id&q...

    2 Agent Answers    1 Community Answer
    Aug 31, 2018 01:38PM UTC
  • OSX version of Burp Suite Pro Crash

    Process: JavaApplicationStub [1264] Path: /Applications/Burp Suite Identifier: com.install4j.7318-9294-3757-1226.70 Version: 2.0.01beta (2.0.01beta) Code Type: X86-64 (Native) Parent Process: ??? [1] Responsible: JavaApplicationStub [1264] User ID: ...

    1 Agent Answer    0 Community Answer
    Aug 28, 2018 02:43PM UTC