Support Center

Burp Community

See what our users are saying about Burp Suite:

How do I?

New Post View All

Feature Requests

New Post View All

Burp Extensions

New Post View All

Bug Reports

New Post View All
Documentation

Burp Suite Documentation

Take a look at our Documentation section for full details about every Burp Suite tool, function and configuration option.

Full Documentation Contents Burp Projects
Suite Functions Burp Tools
Options Using Burp Suite
Extensibility

Burp Extender

Burp Extender lets you extend the functionality of Burp Suite in numerous ways.

Extensions can be written in Java, Python or Ruby.

API documentation Writing your first Burp Suite extension
Sample extensions View community discussions about Extensibility

Monday, August 23, 2010

v1.3.08

This release includes various new features and fixes:

  1. Improved stability on Mac OSX. The UI hangs that sometimes occur are hopefully resolved reduced. I'm keen to eliminate the remaining Mac problems and be able to say that Burp officially runs on this platform, so if you are aware of any issues at all, please let me know and I'll get them fixed.

  2. Added support for upstream SOCKS proxies:

  3. Each individual configuration panel now has its own "restore defaults" button, so you can revert specific parts of Burp's configuration without needing to reset the configuration for a whole tool or the entire suite.

  4. Added support for headless mode (this is when you pass -Djava.awt.headless=true as a command-line argument to your JRE, to prevent it from building a user interface). In this mode, the proxy will pass through all messages without interception, and no other UI-based control is possible. Full programmatic control of Burp via Burp Extender is still possible.

  5. The default proxy request interception rule now ignores JS and ICO extensions, in addition to CSS and other common image file extensions.

  6. Some issues identified with UI extensibility (introduced in v1.3.07) have been addressed. In the previous version, there were some unnecessary limitations on the IHttpRequestResponse objects passed to IMenuItemHandler.menuItemClicked(), which have now been removed:

    • The setRequest() and setResponse() methods now work when invoked on requests and responses currently displayed in the proxy interception view.

    • The getRequest() and getResponse() methods now return the currently displayed message (after any user edits) in the proxy interception view.

    • The getResponse() method now works in Burp Repeater provided the request currently displayed in the request panel has been issued and has not been subsequently edited by the user.

    These enhancements enable Burp extensions to perform various useful functions via custom menu items. For example, if a client-side application component adds a checksum to request data, an extension could create a custom menu item to reapply the correct checksum to the currently displayed request, following any edits by the user.

  7. The colours used for some encoding types in Burp Decoder have been changed to make them more legible on some platforms.

  8. There is a function (on the help menu) to extract diagnostic information about the OS and JRE on which Burp is running, to help troubleshoot some issues.

  9. The "send to comparer" context menu item now supports multiple selection of items in tables/trees.

  10. Various minor bugs are fixed.