Giters

faisalrathore / BurpBounty

Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the active and passive scanner by means of personalized rules through a very intuitive graphical interface.

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

GitHub release GitHub issues Github Stars GitHub Followers Follow on Twitter

Burp Bounty - Scan Check Builder (BApp Store)

Download releases:

This Burp Suite extension allows you, in a quick and simple way, to improve the active and passive burpsuite scanner by means of personalized rules through a very intuitive graphical interface. Through an advanced search of patterns and an improvement of the payload to send, we can create our own issue profiles both in the active scanner and in the passive.

Usage

Profiles

For example videos please visit our youtube channel:


Blind RCE with BurpBounty using Burp Collaborator

Blind RCE with BurpBounty using Burp Collaborator

Extract endpoints with BurpBounty

Extract endpoints with BurpBounty

Blind XXE with BurpBounty using Burp Collaborator

Blind XXE with BurpBounty using Burp Collaborator


Changelog

3.0.6beta 20190819

  • Fixed error with tab
  • Fixed error with status code

3.0.5beta 20190612

  • Choose insertion points type for one profile
  • Fixed error with redirections

3.0.4beta 20190217

  • "Path discovery" feature add new insertion points
  • New tags for extract matches and better issue documentation
  • Variations/Invariations match type feature
  • Algorithm optimization
  • New profiles added

3.0.3beta 20190206

  • Add Match and Replace feature
  • Delete Collaborator button (now start automatically)
  • Improve Collaborator Thread
  • Some minor improvements

3.0.2beta 20181217

  • Fixed error with comma separated

3.0.1beta 20181207

  • Fixed error with timeout

3.0.0beta 20181204

  • New multi-tab look and feel
  • Passive scanner for requests
  • Content-length comparer (for blindSQLi, etc.)
  • Tags system for organize your profiles
  • New BurpCollaborator Interaction
  • New Profile Manager
  • Deleted “not in cookie” functionality
  • Some minor improvements

2.3 20181029

  • Improved profile manager
  • Fixed some minor problems

2.2 20181026

  • Fixed some minor problems

2.1 20181024

  • Replace strings in payloads
  • Field to put profile authors information
  • Timeout option for blind vulns
  • Multiple lines bb json file

2.0 20181020

  • Add the burpcollaborator support
  • Follow redirects and how many to follow
  • Payload append or replace
  • Space encoding choose
  • Response codes to avoid
  • Content type to avoid

1.2 20180607

  • Solved bug with payload space
  • Add "Exclude HTTP Headers" feature
  • Add "Only in HTTP Headers" feature

1.1 20180606

  • Some improvements for integrate with the BApps Store

1.0 20180531

  • First public release

About

Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the active and passive scanner by means of personalized rules through a very intuitive graphical interface.

License:Apache License 2.0

Languages

Language:Java 84.0%Language:BitBake 16.0%