The following extensions were recently added to Burp Suite:
With no NoSQL injection detection in Burp Suite, this is extension tries to detect NoSQLi. It does so by passively monitoring for error messages in response
and actively scanning requests with its custom and experimental payloads
. Once an injection is detected, then a Scanner issue is created.
NOTE: This extension is available for Burp Pro.
Looking for a fast way to right-click →copy→share the request from the Repeater tab to your pentest partner? And that too with exact protocol - hostname combination?
Then this is the extension you need.
Once you find an interesting response for the modified request in your repeater tab, this extension helps to copy the compressed base64 version of the request. All your partner needs to do is install the same extension in his/her Burp, copy the base64 request, right-click on Burp and select “Paste RepeaterClip to Repeater”.
Reshaper by Daquanne Dwight
This extension mimics IFTTT
but for Burp Suite. The extension allows creating rules that get triggered “when” a criteria matches and “then” performs the action that’s configured with the rule.
The “when” criteria can be event direction (if an HTTP message is a request/response), text matching, etc. The “then” action can include dropping the message, highlighting a message, and more. Check out its documentation
to find out more “when” criteria and “then” actions
This extension adds some UI and functionality changes to Burp Suite. Some of the changes include changing the Burp Suite title and its icon, setting a theme to Burp (which adds icons to tabs), changing the style of Repeater / Intruder tabs, and more.