Burp Notes

Automatically change value of request parameter

  1. Go to Proxy -> Options
  2. Click Add under Match and Replace
  3. Specify the value to match and the value to replace, such as:
    Match: uid=bob and Replace with: uid=evilbob
  4. This can be done with regex if you'd like, for example:
    Match: ^Host: foo.example.org$ and Replace with: bar.example.org to rewrite the host header.
  5. Feel free to add a Comment: to lend it some context.


Extracting useful info from responses

  1. Run your attack
  2. Find stuff you want to grep out
  3. Click Options
  4. Go to Grep - Extract
  5. Click Add
  6. Search for the item you want to grep out, click the > to highlight it
  7. Make sure the Start after expression and End at delimiter match a pattern that will consistently get you the data you want
  8. Click OK
  9. Clear out the other columns you'll see by clicking the Clear button under Grep - Match
  10. Click the Results tab, observe the item you wanted to grep as a column

Export output to excel

  1. Click Save -> Results table
  2. Specify the columns that you want in the document, and click Save

Resource: https://security.stackexchange.com/questions/155434/how-do-i-extract-data-from-response-in-burp-suite-intruder