BurpScripthon is a plugin for BurpSuite that allows the analysis of http requests and responses, through python scripts.
Only work for linux.(Because path implementation; you can make a PR)
Clone this repo with git clone http://github.com/n4irda.code/BurpScripthon.git
and load it from BurpSuite.
-
To use your scripts, you need to put them in $HOME/.BurpScripthon/scripts folder, then write the name of your script in BurpScripthon and load it.
-
Your scripts must have two functions called
requests
andresponse
, they both take two arguments calledHttpMessageInfo
andextension
.
def request(HttpMessageInfo, extension):
'''
Process a http request before send it.
arguments:
HttpMessageInfo: Instance of (burp.IHttpRequestResponse)
extension: Instance of (BurpScripthon)
return: Message string to put in `Script Out` tab, or None.
'''
def response(HttpMessageInfo, extension):
'''
Process a http response before send it.
arguments:
HttpMessageInfo: Instance of (burp.IHttpRequestResponse)
extension: Instance of (BurpScripthon)
return: Message string to put in `Script Out` tab, or None.
'''
- BurpScripthon include a copy of BeautifulSoup4, you can use it in your script with
import bs4
See the code in folder scripts for examples..