Image Added

📙 You will learn

How to generate a Burp Suite report and upload it to ThreadFix.

Prerequisites

Audience: IT Professional
Difficulty: Basic
Time needed: Approximately 10 minutes
Tools required: N/A

Generate Results

1. After

1. launching BURP Suite Professional, there are three options for obtaining results to generate a report. Select any of the available options below:

1. • Temporary project

   • New project on disk

1. • Open existing project

1. • 
     

     Image Added

2. Select Use Burp defaults and select Start Burp:
   

1. Image Added

2. Select the Proxy tab and select the Options tab. Make sure the Proxy is running:
   Image Modified
   

3. Open Chrome and set the proxy through the settings tab. Set the port to the one used in BURP:
   

1. Image Added

2. Select Intercept tab and set turn the Interceptor off:
   

1. Image Added

2. Navigate to the Target in Chrome, select the Target tab and then select the URL in Burp:

1. 1. Run the Spider

   2. Run the Actively scan this host

   3. Run the Passively scan this host
      
      

      Image Added

2. Select the findings in the Issues Pane and select Report selected issues:
   

1. Image Added

   
   

2. Select XML for the report format and check the Base64 box below it:
   

1. Image Added

   
   

2. Select Next until the wizards asks to save the file and save it to the desired directory:
   

1. Image Added

Upload Results

1. After generating the report, log in to ThreadFix and navigate to the Teams tab. Expand the Team that the report will be uploaded to:
   

1. Image Added

2. After picking one of the Team's Application, select Upload Scan and drag the report into the Pane:
   Image Modified

1. 
   

2. Once ThreadFix has finish processing the report, the results can be viewed on the Application's page:

1. 
   

   Image Added