Skip to content

andresriancho/burp-proxy-search

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

10 Commits
bsearch
bsearch
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
burp-proxy-search.py
burp-proxy-search.py
 
 
requirements.txt
requirements.txt
 
 

Repository files navigation

Burp proxy search

Burp suite HTTP history advanced search and statistics.

This command line tool will process the output of Burp's "Proxy / HTTP history / Save items" and extract any information you need.

The tool is provided with one example plugin that will show all the unique content security policies found in the HTTP traffic, but you should be able to quickly extend this tool using new plugins to extract any information you need.

Installation

git clone git@github.com:andresriancho/burp-proxy-search.git
cd burp-proxy-search
pip install -r requirements.txt

Usage

usage: burp-proxy-search.py [-h] [--plugin {unique_csp}] filename

Example:

python burp-proxy-search.py ~/current-project/burp/saved.data
python burp-proxy-search.py ~/current-project/burp/saved.data --plugin your-amazing-plugin

Extending using plugins

  1. Create the plugin inheriting from Plugin
  2. Take a look at unique_cors.py for inspiration
  3. Edit plugin_manager.py to add a reference to the new plugin
  4. Test and send a pull request ;-)

The plugin needs to implement process_item to process each HTTP request and response, and an end method which is called at the end to show the result.

process_item takes a rather complex object as input, I recommend you inspect it using print(item.__dict__).

About

Burp suite HTTP history advanced search

Topics

search security statistics burp scanning

Resources

Readme

License

Apache-2.0 license
Activity

Stars

11 stars

Watchers

4 watching

Forks

3 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages