Support Center

Burp Community

See what our users are saying about Burp Suite:

How do I?

New Post View All

Feature Requests

New Post View All

Burp Extensions

New Post View All

Bug Reports

New Post View All
Documentation

Burp Suite Documentation

Take a look at our Documentation section for full details about every Burp Suite tool, function and configuration option.

Full Documentation Contents Burp Projects
Suite Functions Burp Tools
Options Using Burp Suite
Extensibility

Burp Extender

Burp Extender lets you extend the functionality of Burp Suite in numerous ways.

Extensions can be written in Java, Python or Ruby.

API documentation Writing your first Burp Suite extension
Sample extensions View community discussions about Extensibility

Feature Requests

Post a feature request

  • Archive or clear requests without deleting them?

    Sometimes in a large project, I may have 40000+ requests. This makes filtering very slow and sometimes appears to make Burp freeze. Is there any way to remove requests from the current list without deleting them? I still want to keep them all in my logs.

    1 Agent Answer    0 Community Answer
    May 13, 2016 11:10AM UTC
  • Collaborator interface for extensions

    Although extensions can perform active and passive scans, AFAIK they have no access to collaborator, thus cannot verify out-of-band interaction. Am I mistaken? If no, it would be a great thing to have.

    1 Agent Answer    0 Community Answer
    May 13, 2016 09:51AM UTC
  • Display colors for Background and Font

    Is it possible to change the display background to darker theme, e.g. black or dark grey. I suffer from Scotopic Sensitivity Syndrome, so i find difficult to read from white background. I would prefer to change the font color to white and the background to dark grey or black, i know I'm in the minority in this case but it is still worth a shot.

    1 Agent Answer    3 Community Answers
    May 01, 2016 04:29PM UTC
  • Orchestrate Repeater Requests

    It is often needed to orchestrate or time (as in timing) a sequence of requests in relation to one another. Simple Examples: 1) Send Request '1' 2) Wait 1 second 3) Send Request '2' This is hard to do manually since we get no indication of the different send stages (Req, Waiting for server, Res) so we can't determine when the request has reached the server to ti...

    1 Agent Answer    0 Community Answer
    Apr 27, 2016 10:28AM UTC
  • alternate native UI

    Hi all, I am a visually impaired Burp user who unfortunately, cannot use Burp itself due to the native UI being completely unusable with screen readers. Therefore, I only have one remaining usability option; interact with the API via a Python console (assuming I can execute Jython from a terminal (which afaik is possible), and write scripts/interact with the interpreter directly to perform requis...

    1 Agent Answer    2 Community Answers
    Apr 21, 2016 01:15AM UTC
  • Proxy: Warn when leaving the project scope

    It would be a nice little feature for manual testing if burp would show a warning in the browser, when leaving the configured scope while browsing a site. The warning should only be displayed in the browser and give a choice (follow link, leave). It should only apply to websites the user visits, not on resources (js, css, images, ...) that are loaded as part of a page.

    1 Agent Answer    0 Community Answer
    Apr 19, 2016 08:03AM UTC
  • Workbench for items that one wants to take a closer look on later

    It'd be a neat feature if burp would have some sort of "Workbench", where one could send requests to that one wants to inspect later. I often find myself in a situation where I'm quickly checking autoscan results and think "ok, maybe burp is on to something here. I should take a closer look at it later in the process, when initial recon has finished". It wouldn&...

    1 Agent Answer    0 Community Answer
    Apr 18, 2016 09:39AM UTC
  • Restore scan queue issues column

    I have been using Burp for many years and appreciate all the updates and features. One feature/bug that have been bugging (pardon the pun) me is when one restores a previous Burp state, the Issues column in the scan queue does not restore. The number of issues and colour coding according to severity is invaluable when doing a lot of active scans; once the state is restored it is gone and one has t...

    1 Agent Answer    0 Community Answer
    Apr 13, 2016 12:26AM UTC
  • Not only log time but also log date

    L.S. I use Burp Suite to log browser activity for a long period. Within the log on disk and on the HTTP history only the time of a request/response, not the date, is logged. Could you please also log the date in a future release? Regards, Ernst

    1 Agent Answer    0 Community Answer
    Apr 09, 2016 12:09PM UTC
  • Pass back in "Run post-request macro"

    Currently, a session handling rule running a post-request macro can pass back to the invoking tool either: - the response from the current request - the final response from the macro In multi-step work-flows, it is common to have: - the injection point at a intermediary step (let's say #3) - the triggering point at a later step (maybe the final one, let's say #4) In these situa...

    1 Agent Answer    1 Community Answer
    Apr 06, 2016 08:53PM UTC