ENTERPRISE

Configuring default false positive settings

  • Last updated: May 17, 2022

  • Read time: 1 Minute

You can configure how Burp Suite Enterprise Edition handles issues that are flagged as false positives. To access these options, click the settings icon and select "False positives".

By default, if you flag an issue as being a false positive, this will be remembered in future scans of the same site. If the same issue is reported again, it will automatically be flagged as a false positive. You can change this behavior using the "Remember false positives for future scans" option.

You can also configure how Burp Suite Enterprise Edition matches newly reported issues with past issues that were flagged as false positives. By default, these are matched based on the issue type and URL. However, you can change this so that issues are matched based solely on the issue type. You should use this option with caution. For example, if you enable it, and you flag a SQL injection issue as being a false positive, then all future SQL injection issues reported for the site will automatically be flagged as false positives, even if they arise at different URLs.