BitMaster/Sn1per
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Page: Burpsuite Professional Integration
Pages
Burpsuite Professional Integration Censys API Integration GVM 21.x Integration Github API Integration Home Hunter.io API Integration Metasploit Integration Nessus Integration OWASP ZAP Integration OpenVAS Integration Plugins & Tools Sc0pe Templates Scheduled Scans Shodan Integration Slack API Integration Sn1per Configuration Options Sn1per Configuration Templates WPScan API Integration
Clone
2
Burpsuite Professional Integration
xer0dayz edited this page 2021-11-03 08:33:29 -07:00

To enable automated Burpsuite scans via Sn1per, you must have Burpsuite Professional 2020.x or newer running with the following configuration under User options > Misc > REST API.

  • REST API service enabled on port 1338/tcp (localhost)
  • Allow access without API key enabled

To set a custom Burpsuite host and port, edit your /root/.sniper.conf file with the following values:

# BURP 2.0 SCANNER CONFIG
BURP_HOST="127.0.0.1"
BURP_PORT="1338"

# ACTIVE WEB PLUGINS
BURP_SCAN="1"

After setting up Burpsuite, you can then run "webscan" mode or "masswebscan" mode to initiate an automated Burpsuite scan against a defined target (ie. sniper -t website.com -m webscan -w website.com).

Copyright (c) Sn1perSecurity - https://sn1persecurity.com