Support Center

Burp Community

See what our users are saying about Burp Suite:

How do I?

New Post View All

Feature Requests

New Post View All

Burp Extensions

New Post View All

Bug Reports

New Post View All

Burp Suite Documentation

Take a look at our Documentation section for full details about every Burp Suite tool, function and configuration option.

Full Documentation Contents Burp Projects
Suite Functions Burp Tools
Options Using Burp Suite

Burp Extender

Burp Extender lets you extend the functionality of Burp Suite in numerous ways.

Extensions can be written in Java, Python or Ruby.

API documentation Writing your first Burp Suite extension
Sample extensions View community discussions about Extensibility

Feature Requests

Post a feature request

  • Extended grep-extract in Intruder to cover more occurrences

    I would like to ask for more web-scraping capabilities. Let's say I have an intruder to iterate through hundreds of payloads (e.g. page 1, 2, ...), and responses are always of the same format (XML, CSV, ...). I'm able to grep-extract only the 1st payload from the response, e.g. <email>(.*?)</email>; whereas I would like to have an option to extract all of them present => t...

    1 Agent Answer    0 Community Answer
    Sep 07, 2017 09:24AM UTC
  • Allow extensions to modify proxy history

    I was attempting to create an extension that would offer an option to automatically censor passwords or particular secrets within the Proxy HTTP History. Unfortunately, this does not appear to be possible, because the Burp API does not allow modifications to the history: an UnsupportedOperationException is thrown with the message "Proxy history is read-only" when I try to call IHttpRespo...

    1 Agent Answer    1 Community Answer
    Sep 01, 2017 02:59PM UTC
  • Compare Navigate

    I used to use the Compare tab a lot in Burp but every time I need to scroll manually in order to find the differences. If we have a button (like find) to navigate between the differences it'll be epic! :D

    1 Agent Answer    0 Community Answer
    Aug 28, 2017 12:44PM UTC
  • Enable proxy-style request

    This would be useful in the following scenario: 1) is available externally (to everyone) 2) is restricted to internal network access only 3) Apache with the following configuration: <VirtualHost *> ServerName ServerAlias portal-* ProxyRequests On ProxyPr...

    1 Agent Answer    0 Community Answer
    Aug 22, 2017 08:56PM UTC
  • Burp intruder extentions

    Hi, It would be nice if Burp intruder get some additional options. Like an trigger option to manipulate the scan data or automatically rescan if there is an error in the replay.

    1 Agent Answer    0 Community Answer
    Aug 09, 2017 08:21AM UTC
  • Ability to import traffic from .HAR files

    It would be great to have a feature that allowed us to import HTTP Archive (HAR) files to help facilitate automated testing and integration with other tools.

    1 Agent Answer    0 Community Answer
    Aug 08, 2017 06:59PM UTC
  • payload in the "target" tab of the intruder

    Hello, Could be possible for further releases, an option to specify the payload to be part of the IP address to connect to? For example, if I have a list of IP address to which I want to send an specific HTTP packet, there is no way to do that in the intruder, right? Is there any existing plugin to do that? Could this be a possible new feature? Thank you, Manuel

    1 Agent Answer    0 Community Answer
    Aug 05, 2017 07:08PM UTC
  • Intruder Column for Response Length Independent of Payload Size

    When looking for web application behavior in response to fuzzing, I'm often looking for changes in the response length. The problem is that reflected input could obscure minor variations in the response that is separate from the reflected input. A handy feature would be a column that subtracts the payload length from the overall response length to show a corrected length that is independent o...

    1 Agent Answer    0 Community Answer
    Jul 28, 2017 04:39PM UTC
  • BurpSuite Professional Activation Limit

    I am trying to install BurpSuite Licensed version from 1 system to another, after uninstalling it on the previous one. But I am getting a maximum activation limit error when I am trying to activate the same on the 2nd system. Can you please look into the same.

    2 Agent Answers    1 Community Answer
    Jul 24, 2017 11:50AM UTC
  • More hotkeys

    Hello! I use hotkeys a lot, but some trainees use them even more, either by choice (nerds) or not (disabled people). Everybody love Control + "=" (on by default, navigate between Intruder tabs) and Control + "G" (off by default, issue Repeater request), but I hear these requests quite often: - navigate between high-level tabs (Target, Proxy, Spider, Scanner, Intruder, .....

    1 Agent Answer    0 Community Answer
    Jul 22, 2017 10:27AM UTC