Support Center

Burp Community

See what our users are saying about Burp Suite:

How do I?

New Post View All

Feature Requests

New Post View All

Burp Extensions

New Post View All

Bug Reports

New Post View All

Burp Suite Documentation

Take a look at our Documentation section for full details about every Burp Suite tool, function and configuration option.

Full Documentation Contents Burp Projects
Suite Functions Burp Tools
Options Using Burp Suite

Burp Extender

Burp Extender lets you extend the functionality of Burp Suite in numerous ways.

Extensions can be written in Java, Python or Ruby.

API documentation Writing your first Burp Suite extension
Sample extensions View community discussions about Extensibility

Bug Reports

Report a bug

  • burp doesnt start

    Suddenly it does not start, neither 1.7 version nor 2. version neither with dmg nor with java -jar kinomakino:Downloads kinomakino$ java -jar burpsuite_pro_v1.7.37.jar java.lang.ExceptionInInitializerError kinomakino:Downloads kinomakino$ java -jar burpsuite_pro_v2.0.07beta.jar java.lang.ExceptionInInitializerError kinomakino:Downloads kinomakino$ java -version java version "1.8.0_1...

    1 Agent Answer    0 Community Answer
    Oct 07, 2018 12:13PM UTC
  • Burp 2.0 Crawler doesn't seem to work with NTLM authentication

    Hi there! I was trying to crawl a web site which uses NTLM auth. I even setup a Platform Auth credentials (User Options -> Connections -> Platform Authentication) as I'm aware that at the moment that's the only way to do it properly. While browsing web site normally with the aforementioned option configured everything seems to work fine, however when I try to run the Crawl (Dashb...

    1 Agent Answer    0 Community Answer
    Oct 02, 2018 02:15PM UTC
  • Can’t install burp

    When trying to install Burp I get an error that the download file is corrupted.

    1 Agent Answer    0 Community Answer
    Sep 29, 2018 01:45PM UTC
  • Burpsuite doesn't start anymore

    I'm using burpsuite on KaliLinux, Debian rolling release, Gnome DE. The system is fully up to date. After starting burpsuite one can shortly see the splashscreen and the (usual) popup saying burpsuite was not fully tested on the installed Java version (10.0.2). This is the output after starting it as root: sudo burpsuite WARNING: An illegal reflective access operation has occurred W...

    1 Agent Answer    3 Community Answers
    Sep 28, 2018 07:32AM UTC
  • Burp 2.0 beta - authentication does not seem to work

    I was trying out Burp 2.0 beta but am having trouble getting it past application authentication. I tried running a scan, filled login credentials in the New Scan dialog's Application Login. The credentials are correct - checked by logging in with browser. Is what I enter in the "Label" field of the New Login Credentials of any significance? It does not seem to get past authe...

    4 Agent Answers    4 Community Answers
    Sep 27, 2018 08:47PM UTC
  • Inconsitent spidering results

    I have one application I ran spider on twice after setting the scope to the application's top level URL. However the number of 'requests' and 'bytes transferred' are different across two spider runs. The application is same and was unchanged when the spiders were run. Also from what I can tell, the spider does not seem very exhaustive in its ability to identify all pat...

    2 Agent Answers    1 Community Answer
    Sep 26, 2018 06:43PM UTC
  • Burp Enterprise - Firefox save login feature for app logins

    I'm trying out Burp EE 1.0.04Beta. I've configured a few sites, each containing different user logins for them. However, each time I click on a different site (or even Scans, or Agents, or any other button of Burp EE), I'm asked by Firefox 62.0.2 "Would you like Firefox to save this login for http:/"? I don't mind Firefox saving information with login t...

    1 Agent Answer    0 Community Answer
    Sep 26, 2018 01:56PM UTC
  • macOS Mojave - Burp suite DMG doesn't open

    “burpsuite_pro_macos_v1_7_37.dmg” is damaged and can’t be opened. You should move it to the Trash. Is burp suite compatible with Mojave?

    7 Agent Answers    8 Community Answers
    Sep 26, 2018 06:16AM UTC
  • Plaintext Password Storage

    Hello, If upstream proxy authentication is configured, the password is stored in cleartext within UserConfigPro.json; line 23 in my file. Cheers, Mark

    1 Agent Answer    0 Community Answer
    Sep 21, 2018 03:29PM UTC
  • Different results at first scan between version 1.7 and version 2

    In testing the 2.0 version of Burp, I noticed that, scanning the same target, version 1.7 found XSS reflected vulnerabilities that 2.0 did not. Both scanning were done using default configurations from both product. (I mean that, for 1.7 I followed the configurations suggested in "Using Burp as a point and click scanner" article) Once the 2.0 ( scan finished (without finding xs...

    2 Agent Answers    1 Community Answer
    Sep 21, 2018 09:05AM UTC