Burp Extensions - Burp Suite User Forum

Setting up Pycharm, is there a burp python module? or how do I resolve imports?

OK I have a pycharm project, I have loaded legacy example from the github https://github.com/PortSwigger the source examples contain imports that don't resolve so give errors... from burp import IBurpExtender from...

DOM Invader is missing in Burp browser

Hi, I don't see Burp extension in the Burp browser after recent updates I believe. Currently I am in v2023.10.1.1. So I installed Burp recorder extension on Burp browser from Chrome extension store. But still I don't see...

CSRF Scanner not detecting CSRF token named ContactCsrfToken

Note: This issue was generated by the Burp extension: CSRF Scanner. Issue detail The request does not appear to contain an anti-CSRF token. However we are using a token such as the...

SQLMap API is not running!

I'm trying to use the SQLipy extension but I am facing error as SQLMap API is not running. When I try to start the API by clicking on the "Start API", nothing happens. I've tried multiple ports, restarting, reloading and...

Turbo Intruder ( Import error of a python library - requests module )

I am trying to import requests library of Python in Turbo Intruder attack scripts But I am encoutering this error ``` There was an error executing your Python script. This is probably due to a flaw in your script, rather...

Burp suite

Hi guys when i tap burp suite under application in parrot OS 5.3 nothing happens pls what do i do

Fetch selected HTTP request/response without ContextMenu

Hello, thank you for your efforts on Burp's cool MontoyaAPI. I am currently developing an extension, and I would like to retrieve selected HTTP requests or responses from the Proxy History table or any other...

Log4jShell scanner removed? Does Active scan++ supports Log4jshell?

Hi, Any reason why Log4jShell scanner extension is removed from BApp Store? Also, since Log4jShell scanner removed, does for all the below variants are supported by Active scan++ Feature Log4Shell scanner (this...

Adding custom column to Burp Logger

Is there a way to develop an extension that adds a custom column to Burp Logger? Does Burp API allow for that?

How do I extend Burp's Search functionality to look for text maintained by my plugin?

I have developed a plugin that encodes/decodes the traffic to/from an web app. The web app in question uses a custom encoding making it impossible to search inside the POST request bodies. I can extend my plugin or develop...

Creating Python Based Extension using current Burp API (Sept 2023), supported?

Current Portswigger Docs https://portswigger.net/burp/documentation/desktop/extensions/creating says "...Burp Suite only supports extensions written in Java 17 or lower." The same section and subsections does not...

Error while developing burp extension

I am getting the following error in my code: File "***line 56, in processHttpMessage if url in self.in_scope_targets: AttributeError: 'BurpExtender' object has no attribute 'in_scope_targets' Please help...

How do I wrap text and enable coloring in an IMessageEditorTab?

My plugin uses an IMessageEditorTab to extend the functionality of Burp message editor. Oftentimes, the text does not fit in the width of the tab, so a scrollbar appears. Is there any way to enable text wrapping and text...

How do I enable the context menu from an IMessageEditorTab?

My plugin uses an IMessageEditorTab to extend the functionality of Burp message editor. Is there any way I can enable the right-click context menu on my extension's tab in the same way it does on the Raw tab?

Extension HttpRequest persistence

I'm building an extension that provides functionality similar to burp repeater, and I'm trying to save the extension's "state" to the project file, including configurations -which I have managed to do successfully- and...

Configure hotkeys for extension

Hi, I was wondering whether its possible to configure a hotkey for an extension menu item? Thanks in advance.

Failed to load Python interpreter from Jython JAR file

Hello Dear, I am facing an error. I am not able to add my extension in Burp. I am getting the follow error: java.lang.Exception: Failed to load Python interpreter from Jython JAR file at burp.a3t.<init>(Unknown...

Handling multipart requests with Montoya API

Is there an example of how to handle multipart parameters in Montoya API? I can fetch the parameters from the request using HttpRequest().parameters(). If some of the parameters are files with a filename, somewhere in there...

resources for developing plugin for beginers

Is there a resource for creating a basic plugin step by step including a project setup for java/python using montoya api ?

HttpRequestTemplate requestTemplate() not implemented ?

Hello, I am trying to create an extension using the montoya API to register Payload Generator for the Intruder. When trying to retrieve the HttpRequestTemplate from the AttackConfiguration object with the...