itsMe Posted October 17, 2023 Share Posted October 17, 2023 This is the hidden content, please Sign In or Sign Up This release introduces Bambdas into the HTTP history filter, the ability to export BChecks, the rollout of notes in other areas of Burp, TLS passthrough for out-of-scope items, and the ability to include subdomains in your target scope. In Burp Scanner, we have made improvements to the Task details dialog to make it easier to find information about scan results and live tasks. Advanced HTTP history filtering using Bambdas Bambdas are a new way to customize Burp Suite directly from the UI, using small snippets of Java code. This release introduces Bambdas into the Proxy > HTTP history tab, enabling you to write custom filters for your HTTP history. These highly customizable filters can help you cut out white noise in your HTTP history, helping you to focus on only the exact items you're interested in seeing. To try Bambdas for yourself, go to the Proxy > HTTP history tab filter, switch to Bambda mode, and write a custom filter using your own code. Keep an eye out for Bambdas appearing in more Burp tools over the next few months. Exporting BChecks You can now export BChecks, making it easier to share them between different instances of Burp. Just select the BChecks you want, then click Export. Check out our BChecks GitHub repository for BChecks from PortSwigger and from the Burp Suite community. Increased support for notes throughout Burp We're rolling out the notes feature into more areas of Burp. This feature enables you to record key information on tabs, making it easier to return to at a later time. Notes are copied when items are sent between different tabs. Use the Notes panel in the tab sidebar to add a note. This update also introduces functionality that copies your notes when you send items between different tools in Burp. This release introduces notes into: Target > Site map Proxy > Intercept Proxy > HTTP history Proxy > WebSockets history TLS passthrough for out-of-scope items You can now apply TLS passthrough for out-of-scope items automatically when you set the target scope, which can greatly improve performance. This behavior is automatically enabled when you accept the option to Stop logging out-of-scope items. Include subdomains in target scope You can now include subdomains of hosts you've included or excluded from your target scope. Enable this feature by selecting the Include subdomains checkbox in Target > Scope settings. Improved Task details dialog We've made some improvements to the Task details dialog to make it easier to find information about scan results and live tasks: We've replaced the Details tab with a new Summary tab. The Summary tab contains all the information that the Details tab did, but also features a list of the most serious vulnerabilities found, more detailed information on task progress, and a task log to give you real-time information on the task's actions. We've added a new Issues tab listing all of the issues found during a scan. As part of this change, we've renamed the Issue activity tab (which also details changes from previous scans, such as an issue being deleted or more evidence being found) to the Audit log tab. You can now view further details on an item in the Event log by selecting it. Previously, you had to double-click an item to display the Event detail dialog. Browser upgrade We have upgraded Burp's built-in browser to 118.0.5993.70 for Mac and Linux and 118.0.5993.70/.71 for Windows. This update contains security fixes. Usage of this software is subject to the licence agreement. This is the hidden content, please Sign In or Sign Up This is the hidden content, please Sign In or Sign Up Link to comment Share on other sites More sharing options...
.webp.8407a83ac96563f75e1c428a1f0d4c3e.webp)
.webp.9a04cec050a656fab081ac190f971c3f.webp)
Hack Tools Resurrection
itsMe
Recommended Posts