BurpSuite Installation

In this tutorial, we will guide you to configure BurpSuite proxy configuration on two different popular web browsers namely Firefox and Chrome. The chrome guide can be used for other Chromium based browsers as well.

But before, diving into configuration of web browsers, we need to install BurpSuite.

BurpSuite Installation

1. Navigate to BurpSuite downloads page. (Note: Portswigger is a brand who developed BurpSuite).
2. From the dropdown select Burp Suite Community Edition, select Operating System of your choice, and hit Download. If you have a license then download Burp Suite Professional edition.
3. Once downloaded, install BurpSuite
   1. On Linux, open terminal and provide the execute permission to BurpSuite by using chmod +x burpsuite*.sh. Now execute the appropriate file using ./burpsuite*.sh. And follow the installation steps.
   2. On Windows, open the downloaded .exe file and follow the installation steps.
   3. On MacOS, drag the .dmg file to /Applications folder to install.

BurpSuite is installed successfully, now let’s configure the web browser of our choice to start intercepting the web requests.

Configuration on Firefox

1. For requests interception on the web browser, we need to install a proxy extension which can help us forward the requests to BurpSuite instance. Let’s install foxyproxy extension .

   

2. Once the foxyproxy is installed in the browser. Go to extension tab of the browser where we can see the foxyproxy extension as shown below

   

3. Once the foxyproxy is visible click the FoxyProxy extension then click the Option button

   

4. On clicking the option button, the foxyproxy will open up its configuration. Go to the Proxies tab configure the hostname to 127.0.0.1, port to 8080 (Default BurpSuite port) then click on Save

   

5. Now click on the Foxyproxy extension and enable the 127.0.0.1:8080 to connect the browser to the burpsuite via port 8080

   

6. Fire up the burpsuite and clicked on Next

   

7. Next click on Start Burp to startup the burpusite

   

8. To configure the burpsuite with the browser, the burpsuite should be able to listen to the port 8080 on its local address i.e 127.0.0.1 which can be done by going to Proxy → Proxy settings → Edit → Binding then change the port to which the browser i.e foxyproxy is trying to connect, in our case its 8080 and localhost address 127.0.0.1 then click Ok as shown below.

   

9. Now Click on the Intercept tab and click on Intercept is off to turn the Interception On.

   

10. Now in the browser open http://burp/ in the browser and click on CA Certificate to download the certificate of the burpsuite which will download cacert.der file.

    

11. In the browser type about:preferences which will open up the preferences window, now search for certificates and click on the View Certificates button.

    

12. Now click on Import then browse to the folder in which certificate was downloaded and select the certificate, and then click Open.

    

13. After opening the certificate it will prompts us to trust the certificate. Check the boxes and click Ok as shown below:

    

14. The certificate is installed successfully, Now navigate to https://google.com and on the intercept tab we can see our request being intercepted.

Burp Suite configuration is completed for Firefox. Now, let’s try to configure BurpSuite on Chrome browser (or any Chromium browser).

Configuration on Chrome

1. For requests interception on the web browser, we need to install a proxy extension which can help us forward the requests to BurpSuite instance. Download the foxy proxy from the chrome web store .

   

2. Once the foxyproxy is installed in the browser. Go to extension tab of the browser where we can see that foxyproxy extension.

   

3. Once the foxyproxy is visible click the FoxyProxy extension, then click the Option button.

4. On clicking the option button, the foxyproxy will open up its configuration. Go to the Proxies tab configure the hostname to 127.0.0.1, port to 8080 (Default BurpSuite port) then click on Save .

   

5. Now click on the Foxyproxy extension and enable the 127.0.0.1:8080 to connect the browser to the burpsuite via port 8080.

   

6. Fire up the burpsuite and clicked on Next.

   

7. Next click on Start Burp to startup the burpusite.

   

8. To configure the burpsuite with the browser, the burpsuite should be able to listen to the port 8080 on its local address i.e 127.0.0.1 which can be done by going to Proxy → Proxy settings → Edit → Binding then change the port to which the browser i.e foxyproxy is trying to connect, in our case its 8080 and localhost address 127.0.0.1 then click Ok as shown below.

   

9. Now Click on the Intercept tab and click on Intercept is off to turn the Interception On.

   

10. Now in the browser open http://burp/ in the browser and click on CA Certificate to download the certificate of the burpsuite which will download cacert.der file.

    

11. In the chrome browser type chrome://settings/?search=certificates which will show found results in security.

    

12. Click on to the security and scroll down where we will find Manage certificates.

    

13. Go to Authorities tab then click on Import then browse to the folder in which certificate was downloaded and select the certificate, and then click Select.

    

    

14. After opening the certificate it will prompts us to trust the certificate. Check the boxes and click Ok as shown below.

    

15. The certificate is installed successfully, Now navigate to https://google.com and on the intercept tab we can see our request being intercepted.

    

Burp Suite configuration is completed for Chrome browser.