Support Center

Burp Community

See what our users are saying about Burp Suite:

How do I?

New Post View All

Feature Requests

New Post View All

Burp Extensions

New Post View All

Bug Reports

New Post View All
Documentation

Burp Suite Documentation

Take a look at our Documentation section for full details about every Burp Suite tool, function and configuration option.

Full Documentation Contents Burp Projects
Suite Functions Burp Tools
Options Using Burp Suite
Extensibility

Burp Extender

Burp Extender lets you extend the functionality of Burp Suite in numerous ways.

Extensions can be written in Java, Python or Ruby.

API documentation Writing your first Burp Suite extension
Sample extensions View community discussions about Extensibility

Bug Reports

Report a bug

  • Active Scanning Using Default Collaborator Server Spoofing Instead of Private Collaborator Server

    Under Project Options, I have "Use a private Collaborator server" selected with the name of an external Ubuntu 16.04LTS host that has Burp Collaborator Server running on it. However, when I dig through the results from the Active Scanner, Burp is embedding spoofed addresses for the public Collaborator Server instead of my private Collaborator Server: Cache-Control: no-transform X-...

    0 Community Answer
    Dec 09, 2017 12:04AM UTC
  • Encounter blank screen when installing burpsuite in Kali Linux

    Hi, The installation screen was blank when I try to install burpsuite_community_linux_v1_7_29.sh in Kali Linux. Please advice. Thank you

    1 Agent Answer    0 Community Answer
    Dec 08, 2017 10:05AM UTC
  • Unable to use higher unicode characters

    I was unable to use higher unicode characters, such as russian letters, in repeter and proxy. I can't even edit POST body with content type application/json; charset=utf-8 Letters get substituted with letters with low unicode code (<65536). I'm using Burp v1.7.29.

    1 Agent Answer    0 Community Answer
    Dec 05, 2017 01:36PM UTC
  • Macro Cookie Handling - Project File

    Hello, When in the macro editor and going to 'Configure Item', you can change the cookie handling behaviour of the macro. I have noticed that when un-ticking 'Add cookies received in responses to the session handling cookie jar' that the change does not get persisted in the project option .json file. I cannot see any new entry in the project options json file and after sa...

    2 Agent Answers    1 Community Answer
    Dec 01, 2017 03:29PM UTC
  • Low: Typo in Advisory - HSTS Misconfig

    Social mistyped - "If there is no HTTP server, an attacker in the same network could simulate a HTTP server and motivate the user to click on a prepared URL by a scoial engineering attack."

    1 Agent Answer    0 Community Answer
    Dec 01, 2017 01:33PM UTC
  • Intruder tabs not being saved

    Hi Twice I've saved my project, quit the app and when I came back and restored the project the previous intruder tabs were empty. Running version 1.7.29 64 bit on Linux. Robin

    2 Agent Answers    3 Community Answers
    Nov 27, 2017 12:18PM UTC
  • Burp 1.7.29 fails to create a project

    BurpSuite Pro fails to create a new project on a updated Kali 2017.3. The error message in the GUI is "Failed to create Burp project: ExceptionInInitializeError" root@kali:/opt# java -version openjdk version "1.8.0_151" OpenJDK Runtime Environment (build 1.8.0_151-8u151-b12-1-b12) OpenJDK 64-Bit Server VM (build 25.151-b12, mixed mode) root@kali:/opt# ls -lah burpsu...

    6 Agent Answers    6 Community Answers
    Nov 24, 2017 11:00AM UTC
  • URLs in target scope converted to lower case

    When I add a URL like http://example.org/Dealer/A00123 to target scope it is converted to http://example.org/dealer/a00123. If I add it by 'Add to scope' in site map it works as expected but editing in scope tab converts everything to lower case.

    1 Agent Answer    0 Community Answer
    Nov 24, 2017 11:00AM UTC
  • Cannot download big files.

    Hi! I cannot download any big files through burp proxy. There is no cert installation mistake because I tried this on so many other employees devices too. There are no ssl errors too because a file smaller than 4 mb gets downloaded everytime. I don't know if there is a feature to enable this or this is a bug in the program. Pls help me out. I need to get stuff running before the start of...

    5 Agent Answers    6 Community Answers
    Nov 21, 2017 06:02PM UTC
  • BApp Store Install hanging 1.7.28

    The install of new extensions is hanging after upgrading from 1.7.27 to 1.7.28.

    1 Agent Answer    1 Community Answer
    Nov 16, 2017 09:31PM UTC