Support Center

Burp Community

See what our users are saying about Burp Suite:

How do I?

 New Post View All

Feature Requests

 New Post View All

Burp Extensions

 New Post View All

Bug Reports

 New Post View All
Support Home
Getting Started

Getting Started with Burp Suite

Getting Started Home
Documentation

Burp Suite Documentation

Take a look at our Documentation section for full details about every Burp Suite tool, function and configuration option.

Full Documentation Contents Burp Projects
Suite Functions Burp Tools
Options Using Burp Suite
Documentation Home
Knowledge Base
Training

Burp Suite Training

Troubleshooting
Extensibility

Burp Extender

Burp Extender lets you extend the functionality of Burp Suite in numerous ways.

Extensions can be written in Java, Python or Ruby.

API documentation Writing your first Burp Suite extension
Sample extensions View community discussions about Extensibility
Burp Extender Home
BApp Store
Release Notes
Support Center Burp Extensions

Burp Extensions

Make a new post

  • Autoscan Insertion points

    I am trying to make an extension for burp that provides request and insertion points for scan via command line. I can perform scan on the request with default insertion points of that is by not passing anything for the insertion pint argument in doAutoScan function. But I want to be able to provide my own insertion points. Could anyone guide me with the same. I wanna know the type of data structur...

    1 Agent Answer    0 Community Answer
    Aug 09, 2017 05:45PM UTC
  • Backslash Powered Scanner - Identify Backend Parameters

    During a scanning process, I came across multiple "Interesting input handling" issues. If I look into the Advisory tab, I get a comment (showed with italic style) saying the following: "To scan for backend parameters, right click on the attached request and select 'Identify Backend Parameters'". I have continuously searched for that specific command but I was not ...

    1 Agent Answer    0 Community Answer
    Aug 08, 2017 09:14AM UTC
  • IMessageEditor/IMessageEditorController context menu

    I noticed that while using IMessageEditor/IMessageEditorController calls to create a view for request and responses that when you bring up the context menu, it will not allow you to use Send to Repeater/Intruder/Sequencer. An exception shows up on the error window for the plugin in the Extender tab when those options are clicked. However, things like Copy URL and Send to Comparer work. Any ideas?

    1 Agent Answer    0 Community Answer
    Aug 03, 2017 05:42PM UTC
  • Highlighting in IMessageEditor

    Would it be possible to expose an API call to add highlighting to IMessageEditor like the method setSearchExpression() within ITextEditor? Thanks.

    1 Agent Answer    1 Community Answer
    Aug 02, 2017 05:52PM UTC
  • Download issue

    Not able to login to csld account to download the Software Portswigger

    1 Community Answer
    Jul 11, 2017 06:42AM UTC
  • Burp Extension Python Import Error

    Hi, I'm trying to create a new python extension but i'm guessing Jython cannot find the burp libs so i'm getting the following error: ImportError: cannot import name IBurpExtender While the extension code for this test only had: from burp import IBurpExtender Jython2.7.0_Standalone Burp 1.7.23 Could be related to syspath of something but i couldn't solve this pro...

    7 Agent Answers    7 Community Answers
    Jul 02, 2017 02:33PM UTC
  • Need info for creating custom intruder gui

    Hello All, I am working on a extension development which has a requirement for custom UI for intruder tab with default intruder functionalities (i.e. the ui is only different, core functionality will be same as intruder tab). Is it possible to override the intruder methods to create same functionality and display in my custom UI?

    1 Agent Answer    2 Community Answers
    Jun 28, 2017 09:22AM UTC
  • Extension - Closeable Tab UI element like in the Repeater

    I'm writing a Burp extension that has a UI and adds "closeable" tabs, exactly like in the Repeater tab, where there are small "x" to close a tab. However, mine look horrible, as I use a JButton (in Python): class CloseableTab(JPanel, ActionListener): def __init__(self, title, pyparent, content, customize_callback): self.title = title self.pyparent...

    2 Agent Answers    0 Community Answer
    Jun 27, 2017 01:32PM UTC
  • BurpSuite Professional 1.7.23 hangs during extensions loading

    Hi, After upgrading my Parallels Kali 2.0 VM from BurpSuite Pro 1.7.21 to 1.7.23 I noticed that whenever I want to install and load new extension BurpSuite hangs and enters something like deadloop. I tried few things (bigger -Xmx value, Oracle Java) but nothing helped so far. It occurs on fresh installation of BurpSuite Pro 1.7.23 without any extensions and without Jython/JRuby support. Rega...

    1 Agent Answer    0 Community Answer
    Jun 05, 2017 09:36AM UTC
  • Does not having BS Professional license impact Burp Extender?

    Question is quite specific enough, but to elaborate, I basically plan on writing something to visualize the sitemap better, and in a aesthetically-pleasing fashion. So obviously the only information I need access to would be the sitemap, *unimportant: eventually converted to JS object format with a style I've already created*. Anyways, back on topic... any limitations I need to watch out for...

    1 Agent Answer    0 Community Answer
    Jun 04, 2017 08:41PM UTC

© 2017 PortSwigger Ltd. | Company | Blog | Careers | Legal | Contact | Follow us @Burp_Suite