Skip to content

yandex/burp-molly-scanner

master
Switch branches/tags

Name already in use

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?
Code

Latest commit

 

Git stats

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
 
 
 
 
 
 
 
 
 
 
 
 

Burp-molly-scanner

Overview

The main goal of Burp-molly-scanner is to extend Burp and turn it into headless active scanner.

Usage

  • Build fat jar with Maven
  • Rewrite burp_molly_config.json
  • Put path to config in MOLLY_CONFIG Environment variable
  • Run Burp Suite in console java -jar burpsuite_pro.jar
  • Add Plugin in Extender Tab (once)
  • Run scanner in headless mode (see run.sh)
  • Parse resulting XML report
  • Integrate it to your security pipeline

Contributing

Contributions to Burp-molly-scanner are always welcome! You can help us in different ways:

  • Open an issue with suggestions for improvements and errors you're facing;
  • Fork this repository and submit a pull request;
  • Improve the documentation.

About

Turn your Burp suite into headless active web application vulnerability scanner

Topics

Resources

License

Stars

Watchers

Forks

Packages

No packages published