Hey forum, im a bit stuck with BurpSuite intruder attack. Im working on the starting point box called oopsie. It hosts a website. Ive captured the HTTP GET which is:
GET /cdn-cgi/login/admin.php?content=accounts&id=1 HTTP/1.1
Then into the intruder module of Burp I have parameterized this:
GET /cdn-cgi/login/admin.php?content=accounts&id=§1§ HTTP/1.1
Set the payload options for simple list:
for i in ‘seq 1 100’; do echo $i; done
And enabled always follow redirections and process cookies in redirections.
When starting the attack I get:
"The community edition of burpsuite contains a demo version of burp intruder. Some functionality is disabled and attacks are throttled.
The attack starts but only returns one line where I am expecting it to brute force 100 lines of code.
Do I need to purchase the full version of have I done something wrong?