login

Burp Suite, the leading toolkit for web application security testing

PortSwigger Web Security Blog

Thursday, 7 January 2010

Burp Suite v1.3 released

Woohoo!
Burp Suite v1.3 is now available to download. This is a major upgrade with a host of new features.

New features in Burp Suite free edition include:
New features in Burp Suite Professional include:
Many thanks to everyone who helped with the beta testing and gave me their feedback - this was much appreciated.

Have fun!

9 comments:

fusen said...

Awesome, thanks for all your work!

Matt Presson said...

Thank you, and congrats again on the new little one.

Abe Miessler said...

Way to go! Can't wait to try it out. Congrats on the baby!

Anonymous said...

Burp suite not work on Ubuntu 9.10 , OpenJDK Runtime Environment.((( Froze on firs proxy request.

PortSwigger said...

@Anonymous

The Ubuntu problem is because of OpenJDK. You need to switch back to the official Sun JRE. Instructions below:

First, check the list of Java alternatives installed on your PC:
sudo update-java-alternatives -l

Make sure that the following is in the list:
java-6-sun

If its not, install the sun-java jre/jdk:
JRE:
sudo apt-get install sun-java6-jre

JDK (Includes the JRE):
sudo apt-get install sun-java6-jdk

Run the first list command again if you want to make sure that java-6-sun is in the list.

Next, we need to set the default Java installation to use.
To set java-6-sun as the default Java installation to use, run:
sudo update-java-alternatives -s java-6-sun

Anonymous said...

Please add another category to your scanner for information leaks like parsing http headers (server, x-powered-by, via, etc.).

john said...

You need to switch back to the official Sun JRE. Run the first list command again if you want to make sure that java-6-sun is in the list.

Anonymous said...

Hi!

Could you please add support for "pass the hash" in the proxy module for HTTP NTLM Authentication (see Metasploit's module "smbrelay")?

Thx!

Anonymous said...

Could you please add a function to decode Firefox 3.x standard URL-encoding to all HTTP(S) requests before sending them out?

This would help very much!


User Forum

Get help from other users, at the Burp Suite User Forum:

Visit the forum ›

Copyright 2014 PortSwigger Ltd. All rights reserved.