HTTP history

You can use the HTTP history to see a record of the HTTP traffic that has passed through Burp Proxy. You can also see any modifications that you made to intercepted messages.

The HTTP history contains the following information:

• # - The request index number.
• Host - The protocol and server hostname.
• Method - The HTTP method.
• URL - The URL file path and query string.
• Params - Flag whether the request contains any parameters.
• Edited - Flag whether the request or response were modified by the user.
• Status code - The HTTP status code of the response.
• Length - The length of the response in bytes.
• MIME type - The MIME type of the response.
• Extension - The URL file extension.
• Title - The page title (for HTML responses).
• Notes - Any user-applied note.
• TLS - Flag whether TLS is used.
• IP - The IP address of the destination server.
• Cookies - Any cookies that were set in the response.
• Time - The time the request was made.
• Listener port - The listener port on which the request was received.
• Start response timer - The time in milliseconds from when the request was sent until the first byte of the response is received.
• End response timer - The time in milliseconds from when the request was sent until the complete response was received.

The HTTP history is always updated, even if Intercept is off. This enables you to browse without interruption while you monitor key details about application traffic.

Right-click any item in the table to access further options, such as sending requests to other Burp tools. For more information on the available options, see Context menu.

Changing the HTTP history layout

You can customize the HTTP history table in the following ways:

• Hide columns - Right-click the header of the column you want to hide, then select Hide column.

• Show hidden columns - Click the options menu > Table layout, then select the columns you want to display.

• Move columns - Drag and drop the header of the column you want to move to its new location.

• Add custom columns - Click the options menu > Add custom column to create a personalized column that displays the data you want to see. For more information, see Adding custom columns to the HTTP history.

• Sort the table - Click the header of the column you want to sort by. You can sort by ascending, descending, or unsorted.

• Filter the data - Click the Filter settings bar, then choose either:

  • Settings mode - Use predefined checkboxes and fields to set your criteria. Learn more about filtering the HTTP history.

  • Script mode - Apply a Java-based script to define your custom filter. Learn more about filtering the HTTP history with scripts.

• Restore the default layout - To return the table to its original state, click > Table layout, then select Restore default table.

Viewing a request

If you select an item from the HTTP history, the lower pane shows the request and response messages for the item. Any modified messages are shown separately. The message may have been modified through:

• User interception.
• Automatic response modification.
• Match and replace rules.

In addition to the main history view, you can also:

• Double-click an item to open it in a pop-up window.
• Right-click a request and select Show new history window to open a new history window with its own display filter.
• Access the Inspector, to easily view and edit interesting items.
• View and edit your notes. To do this, click Notes.