Thoughts on security, privacy, and building software.
21 December 2018
I recently purchased a Pixelbook while over in the US, and I’ve slowly been exploring it’s capabilities. I really like it as a travelling device, and I’ve naturally been curious about what you can set up. VSCode, Signal and other apps all seem to work in the Linux sandbox environment, and it turns out that Burp Suite does as well. Assuming you have the linux environment installed, adding Burp Suite is reasonably straight-forward.
# Install elinks, or another text based browser.
sudo apt install elinks
# Go to Burp Suite's site and download a copy (it's about 95 MB)
elinks https://portswigger.net/burp/communitydownload
# Save the 'Download for Linux (64-bit)', then make the file executable
chmod u+x burpsuite_community_linux_v1_X_XX.sh
# Run the installer
./burpsuite_community_linux_v1_X_XX.sh
# Go into the program directory and run the Burp Suite
cd BurpSuiteCommunity
./BurpSuiteCommunity
Once you’ve done this, you’ll need to install a proxy switching extension for chrome. The one I used is Proxy SwitchyOmega, in which you should set up two profiles:
Once this is set up, you should be able to browse, with a bunch of warnings and broken links for secure webpages. The next step is to install Burp Suite’s CA certificate, to get rid of these errors.
http://127.0.0.1:8080/
(The official docs say to go to http://burp/
but this will not work on ChromeOS)cacert.der
and click openAt this point you should be set up, and able to use Burp Suite without errors. Happy hunting!