Enable interception by default after starting burpsuite#
User options->Misc->Proxy Interception
Filter unwanted content#
Proxy->HTTP History->Filter
- Hidden file types: gif, jpg, png, css, woff, woff2, svg, mp4, map
- Filter OPTIONS requests ^OPTIONS /
- Show only items within range
- Hide packets without response
Keep it clean: Do not record items beyond the scope#
User options->Misc->Proxy History Logging
If you want to enable burpsuite plugins for scanning in the background, you can leave the recording on.
Install some burpsuite extensions#
Dark mode#
User options->Misc->Display
Save settings: Do not lose project progress#
Project settings -> Save project settings
The content saved in the project configuration file is as follows;
The project configuration is loaded in the first panel when burp is opened.
The user configuration file is loaded in the second panel when burp is opened.
Load from configuration file -> Pick the file you saved, check Default to the above in the future.
As shown in the above figure, three configuration files are loaded, and the content saved in these three configuration files is inconsistent. These three configuration files will be loaded into burp at the same time. After burp is fully opened, the user's settings are set according to these three configuration files.
Filter unwanted websites#
https://gist.github.com/vsec7/d5518a432b70714bedad79e4963ff320
.*\.google\.com
.*\.gstatic\.com
.*\.mozilla\.com
.*\.googleapis\.com
.*\.pki\.goog
Download the configuration file and load it
Chinese garbled characters#
User options->Misc->Display->HTTP Message Display
Passive scanning, scan all closed#
Dashboard
Switch to sitemap view#
