This repository contains all the examples related to a series of tutorials that demonstrate how to use the new Montoya API of Burp Suite to create extensions that will greatly simplify our pentester lives.
Each example contains the sources of the plugin, the compiled plugin and the code of the backend used for the scenario (when present in the tutorial).
You can find the tutorial already published here:
- Part 1 - Setting up the environment and Hello World
- Part 2 - Inspecting and modifying HTTP requests and responses
- Part 3 - Inspecting and modifying WebSocket messages
- Part 4 - Creating new tabs for processing HTTP requests and responses
- Part 5 - Adding new functionality to the context menu (accessible by right-clicking)
- Part 6 - Adding new checks to Burp Suite Active and Passive Scanner
- Part 7 - Using the Collaborator in our Burp Suite plugins
- Part 8 - BChecks: a quick way to extend Burp Suite Active and Passive Scanner