Getting Started with Burp Suite
Burp Suite Documentation
Take a look at our Documentation section for full details about every Burp Suite tool, function and configuration option.
Burp Suite Professional and Community editions | Burp Suite Enterprise Edition |
Burp Scanner | Burp Collaborator |
Burp Infiltrator | Full Documentation Contents |
Burp Extender
Burp Extender lets you extend the functionality of Burp Suite in numerous ways.
Extensions can be written in Java, Python or Ruby.
API documentation | Writing your first Burp Suite extension |
Sample extensions | View community discussions about Extensibility |
Burp Extensions
Make a new post
-
Extension load error code
os win 7 java.lang.ExceptionInInitializerError at org.python.util.PythonInterpreter.<init>(PythonInterpreter.java:100) at org.python.util.PythonInterpreter.<init>(PythonInterpreter.java:94) at org.python.util.PythonInterpreter.<init>(PythonInterpreter.java:71) at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method) at sun.reflect.NativeConstructor...
2 Agent Answers 2 Community AnswersNov 27, 2019 09:12AM UTC -
Extensions are not loading with Burp defaults
Hi Team, I always use Burp defaults option for configurations while opening/creating projects. I have a few extensions installed such as Retire.js, TokenJar, Active Scan++, etc. What my issue is that all the extensions are getting uninstalled except Active Scan++ and Auth Matrix. I need to reinstall other extensions each time when I open existing or creating new projects. In the case of Aut...
3 Agent Answers 2 Community AnswersNov 25, 2019 05:56AM UTC -
XML tab "Reparse" Programmatically
Hi, I would like to know how the "Reparse" button in the request/response "XML" tab reformats XML documents programmatically via Java. Specifically, I am wondering what library(s) are used for this. I am asking for the purpose of incorporating it into current and future Burp Extensions that handle XML documents. While manually reparsing documents in the XML tab is acceptable...
2 Agent Answers 2 Community AnswersNov 24, 2019 08:09PM UTC -
Burp Extension for Intruder Payload with multiple payload lists
Hi, I am working on creating a extension for burp suite where a user can choose from a list of payload lists [one list for angular payloads, one list for react payload] according to the framework of the application he is testing. But I am only able to create one payload list per extension using this code https://github.com/PortSwigger/example-intruder-payloads Can you please let me know i...
1 Agent Answer 0 Community AnswerNov 11, 2019 06:11AM UTC -
Scan Configuration
I am building an extension that calls doActiveScan and doPassiveScan. Is there a way to specify the scanner configuration. Currently tasks are created and there is a default scanner configuration used named Current auditing configuration. Is there a way to specify the configuration to be used by the scanner. I have tried exporting a scanner configuration and calling loadConfigFromJson but every ti...
2 Agent Answers 1 Community AnswerOct 18, 2019 01:59PM UTC -
Send to decoder programmaticaly from extensions
There are methods in IBurpExtenderCallbacks for sending data to - repeater, - intruder, - comparer, and - spider. Why isn't there one for decoder? When writing a custom message editor with a custom editor widget, it'd be better to be able to offer sending a selected chunk to the built-in decoder instead of reimplementing it, poorly. Just like there's already void sendTo...
2 Agent Answers 2 Community AnswersOct 18, 2019 09:32AM UTC -
Burp Suite Automation
Hi All We are trying to automate to test various vulnerabilities like xpath injection,sql injection, Cross-site scripting etc. We have referred the following link https://www.we45.com/blog/automating-burp-with-jenkins We have tried through burp-rest-api as well as carbonator The issue is that we are not able to select the individual scan types (xpath injection,sql injection, Cross-sit...
3 Agent Answers 2 Community AnswersOct 14, 2019 01:09PM UTC -
Old version of AutoRepeater in the BApp store
Hello, extension AutoRepeater is available in the BApp store as version 1.0 from April, 4th 2018. The latest commit from the original repository https://github.com/nccgroup/AutoRepeater was on July 27th, 2019. Any plans to sync the BApp store with the original repository? Plenty of features are currently missing, including the ability to colorize logs. Nicolas
1 Agent Answer 0 Community AnswerOct 05, 2019 01:29PM UTC -
Trouble integrating requests python library and jython
Im currently building a burp extension using Jython. At one point I basically get URLs from the proxy Tab and make an additional request with that url+someEndpoint with the Python Requests library. The extension works fine if I use the URL that "comes" from proxy tab, something like this. requests.get(str(requestInfo.getUrl())) But when I, for example, want to get the "sour...
1 Agent Answer 0 Community AnswerOct 02, 2019 01:29PM UTC -
Add Custom Headers stopped to work.
Hi Guys! Any changes in Add Custom Headers extension? It stopped to work on Linux/Windows/1.7 and 2.X Burp versions. (:
2 Agent Answers 2 Community AnswersSep 30, 2019 10:37AM UTC