Bug Reports

Report a bug

  • intruder window switching keyboard shortcut not working anymore

    On version 1.x I was able to cycle through intruder windows with command+` on OSX. This now only seems to cycle back and forth between the last intruder window to be opened and the burp main app window,

    3 Agent Answers    2 Community Answers
    Aug 31, 2019 06:00AM UTC
  • Unable to take over parameter in macro

    Hi I'm trying to run multiple requests after one. Request 1) Send a post request with fixed data. -> The result gives me a sessionid Request 2) Send a new post request with the previously received sessionid. I created my macro with their requests and created a custom parameter for the first request. However, I can't seem to find how to reues the cystom parameter.

    1 Agent Answer    0 Community Answer
    Aug 29, 2019 10:32AM UTC
  • Unable to see Issue activity log during Crawling and Audit

    Hi , I am using burpsuite professional 2.1.03 and have configured the test url in burp for Crawling and Auditing. During auditng I see Issue activity tab blank even though there are several issues. Please help Regards Krishna

    2 Agent Answers    1 Community Answer
    Aug 28, 2019 10:28AM UTC
  • Sometimes a complete freeze may happen when editing and issuing a request in the repeater

    I'm not sure what is causing this, but sometimes when editing a request in the repeater and possibly removing the last CRLF characters by keeping pressed the CANC key, after issuing the request all the windows will freeze and CPU usage is fixed at 10/15%. I'm attaching a `jstack -l` dump, i'm not sure how to reproduce it consistently, but usually modifying the ending characters o...

    4 Agent Answers    5 Community Answers
    Aug 25, 2019 04:11PM UTC
  • Custom crawl user-agent cannot contain colon (Burp

    I am setting up a custom crawler function, and tried to set-up a user-agent like this: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:68.0) Gecko/20100101 Firefox/68.0 However, this does not succeed and gives the error-message: "custom user-agent cannot contain colon" Is there any reason for this? Many WAFs try to block scans with user-agents that are know to be used from scan...

    1 Agent Answer    0 Community Answer
    Aug 24, 2019 08:27AM UTC
  • Plugin's Java runnable processes keep running, even after fully removing the plugin.

    Using Burp Suite v2.1.03, runnable Java processes (Java: ScheduledFuture) are not killed or interrupted, when stopping or even removing the plugin. Reproduction: 1. Install Logger++ from the BApp store. 2. Enter an Elasticsearch server under options, this server must be over v 7.0.0 (not compatible for the plugin). 3. Press the start button. You should receive an error, but the runnable proc...

    4 Agent Answers    3 Community Answers
    Aug 22, 2019 02:07PM UTC
  • Use of multiple URL's with plugin: Burp Scan

    Hello Team, We are using Jenkins for Continuous Integration of Burp Enterprise. We are using 'Burp Scan' plugin in the Build section of Jenkins Freestyle Project job creation. When scanning the web application in Burp Enterprise we are able to put 2 URL's for the scan whereas in Jenkins plugin could you please let us know how to use 2 or more URL's. Thanks, Govind

    7 Agent Answers    6 Community Answers
    Aug 22, 2019 12:53PM UTC
  • Chinese issue appears at issues view

    myBurp issues view 。Add a Chinese issue appears, showing garbled characters。 Plasese help me; Thanks ! this is my base64ed image; data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAJAAAAEoCAIAAAA4yu9DAAAACXBIWXMAAA7EAAAOxAGVKw4bAAAMKUlEQVR4nO2dyY4cRRCGo8EyeBiksTFmG2HDYMx2ZT/NC3DnwBUegRua5zAICSFxQYhHQAIECOQHQCBxNpLlJ7CaQzM1NZmRkUtFLX/3/526s6qisvKvzIxca7Ver4Xg8NDcESB1UDAwKBgYFAwMCgYGBQODgoFBwcCgYGD4CG...

    1 Agent Answer    0 Community Answer
    Aug 20, 2019 06:55AM UTC
  • Very long crawl times

    Hi, Since Burp 2.0 is out of beta I started using it today for a project I'm working on. While crawling a website, I noticed it took a very long time to crawl the website. So I decided to run a test on demo.testfire.net (IBM testsite for Appscan) with Burp 2.1.03 and 1.7.37. The old version performed a crawl under 2 minutes, while the new version with crawl limit - 60 minutes took 20 min...

    2 Agent Answers    1 Community Answer
    Aug 19, 2019 09:05AM UTC
  • Broken link in extender

    the "install Jython" link in Extender is 404 across all Jthyon extensions. https://www.jython.org/downloads.html

    4 Agent Answers    3 Community Answers
    Aug 16, 2019 01:21AM UTC