Burp Store and burp app validation
Regarding the burp store, do you do any check regarding the content of the burp extension?
How can we guarantee that there are 100% safe and no traffic will be sent to 3rd party?
Appreciate your response.
Thanks for your message. We review all extension in the BApp store, checking for suspicious code and security vulnerabilities. We don’t ban connections to 3rd party servers. A number of extensions do this by design, for example to fetch the latest definitions of vulnerable software. Normally we would reject extensions that send unexpected or excessive data to external servers.
With everything in security, nothing is 100% safe.