Support Center

Burp Community

See what our users are saying about Burp Suite:

How do I?

New Post View All

Feature Requests

New Post View All

Burp Extensions

New Post View All

Bug Reports

New Post View All
Documentation

Burp Suite Documentation

Take a look at our Documentation section for full details about every Burp Suite tool, function and configuration option.

Full Documentation Contents Burp Projects
Suite Functions Burp Tools
Options Using Burp Suite
Extensibility

Burp Extender

Burp Extender lets you extend the functionality of Burp Suite in numerous ways.

Extensions can be written in Java, Python or Ruby.

API documentation Writing your first Burp Suite extension
Sample extensions View community discussions about Extensibility

Feature Requests

Post a feature request

  • Disable notification to upgrade to Burp 2.0

    Can you please add an option to disable notification to upgrade to Burp 2.0? I'm planning on staying in Burp 1.x for now. It gets tedious click close each time I open Burp.

    1 Agent Answer    1 Community Answer
    Sep 14, 2018 04:57PM UTC
  • Burp v2.0.05beta - Opening Issues in Audit details - Audit items

    When I open Audit details -> Audit items -> double-click on request of my choice, I can only see "Base request" and "Base response". Could you bring back the "Issues" tab, which would list the issues found for the specific request? There are issues found in the issue I tried. Thanks, Andrej

    1 Agent Answer    0 Community Answer
    Sep 13, 2018 08:30AM UTC
  • installation and configuration for first time

    Could you please assist us how to install and configure the burpsuite on a server and what are the minimum requirements for the installation.

    1 Agent Answer    0 Community Answer
    Sep 11, 2018 01:00PM UTC
  • installation and configuration for first time

    Could you please assist us how to install and configure the burpsuite on a server and what are the minimum requirements for the installation.

    1 Agent Answer    0 Community Answer
    Sep 11, 2018 12:57PM UTC
  • Tear off for Options

    It would be quite nice to be able to tear the two Options menus off (Project & User) like the rest. There are times where flipping some switches is part of my testing workflow. -m

    1 Agent Answer    0 Community Answer
    Sep 06, 2018 12:44AM UTC
  • Burp v2.0.04beta - change User Agent

    I know you are now using Chromium browser. However, the environment I test on simply tells me "Your browser is not supported" and the default crawling doesn't work (gives up after 10 requests to / ). Would it be possible to set the useragent to some custom value, like it was with old Spider?

    2 Agent Answers    1 Community Answer
    Sep 05, 2018 02:49PM UTC
  • Burp 2: Application Login - 2nd authentication step

    The New Login Credentials accept username and password. Would it be possible to introduce an optional 2nd authentication step, like PIN (with static value)? For example, user needs to fill in username+password, followed by PIN on 2nd page for authentication to be complete.

    1 Agent Answer    1 Community Answer
    Sep 03, 2018 07:30AM UTC
  • Burp 2: Application Login - credentials test button

    Hi, I love the new Application Login. Would it be possible to have a Test/Try button there? After clicking on this button, the new Chromium rendering view could be opened, showing the page after successful login (or better yet, the entire process of logging in). This button would serve to double-check if Burp login is indeed successful when attempted.

    1 Agent Answer    0 Community Answer
    Sep 03, 2018 06:59AM UTC
  • How to prevent Mod_security being activated when using the burp suite?

    Hello, I have 3 questions. 1) How to prevent Mod_security being activated when using the burp suite? Websites are blocking my ip address... to solve this problem I want to automatically change my IP address each X seconds. So this is my second question: 2))I want to use an IP changer tool which will listen to the same address (127.0.0.1) and port (8080)as the burp suite. but I read that its im...

    1 Agent Answer    0 Community Answer
    Aug 28, 2018 01:26PM UTC
  • Attack payloads in unquoted JSON attributes

    I observed that burp scanner sends attack payloads in unquoted JSON attributes, which usually results in server side parsing errors. I repeated the attack request with quoted attribute and there were no parsing errors. Will it be a good idea to add quotes to unquoted attribute after inserting the payloads during active scan ? I am just spitballing, I may be wrong. Thank you !

    1 Agent Answer    0 Community Answer
    Aug 22, 2018 04:32PM UTC