Burp Suite Extensions for Effective Web Application Testing

Burp Suite is a platform for auditing web application security. Contains tools for mapping a web application, searching for files and folders, modifying queries, fuzzing, selecting passwords and much more. There is also a BApp store add-ons store that contains additional extensions that increase the functionality of the application. This article will discuss the tools that increase the effectiveness of Burp Suite when testing for penetration of web applications.

I have already described the main features of this utility , in this article I will focus on the Extender module - managing extensions in BurpSuite.


')
Despite the fact that Burp Suite is in itself a pretty good tool, its capabilities can be significantly expanded with add-ons - both extensions placed in a special store - BAppStore, and third-party ones.



There is a specialized API that allows you to integrate your own extension, written in Pyhton, Java or Ruby.

Extensions

HUNT Proxy Extension
A good practice for testing web applications is to follow testing methodologies in order to more fully explore a web application and its components. To facilitate this task, there is an excellent extension of the HUNT Proxy Extension.

This extension does not check for vulnerable parameters, but rather warns about them so that the pentester can check them manually (more thoroughly). For each vulnerability class, HUNT identifies common parameters or functions associated with that vulnerability class.



This extension allows Pentesters to send requests and responses to the Burp tab called “HUNT Methodology”. This tab contains a tree on the left side, which is a visual representation of the testing methodology. By submitting requests, pentesters can verify that they have completed a specific step of the methodology.



→ Download extension

burp-vulners-scanner
In BAppStore it is called Software Vulnerability Scanner. This extension is from the creators of the vulners.com vulnerability database. Using this extension, you can identify vulnerable components of a web application and immediately receive a link to the description / exploit.



This extension can help save significant time to identify vulnerable plug-ins of popular CMS.

→ Download extension

Burp automator
As an automation tool, you can use the built-in scanner, or use the tool Burp Automator. This tool will automate checks using Burp Suite, slackclient and burp-rest-api as the basis.



→ Download extension

burp-xss-sql-plugin
Quite popular in narrow circles plugin from Vladimir Ivanov, to identify XSS, OpenRedirects and SQLi. Repeatedly assisted the author in successfully participating in the BugBounty program.

→ Download extension

Autorize
This autorize web application authorization problem autodetection autorize was designed to help pensters perform automated authorization parameter tests. The latest version of Autorize performs automatic authentication.



→ Download extension

burplay
Burplay is a Burp Extension, the main purpose of which is to help in finding vulnerabilities leading to escalation of privileges.

→ Download extension

Conclusion

In addition to the above additions, you can always use the application store to install an extension to improve the efficiency of testing web applications.

---

In the next article I will look at the OWASP ZAP utility, which is an equally popular tool for testing web applications.