Skip to content

Latest commit

 

History

History

burpsuite-project-parser

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
.claude-plugin
.claude-plugin
 
 
commands
commands
 
 
skills/burpsuite-project-parser
skills/burpsuite-project-parser
 
 
README.md
README.md
 
 

README.md

Burp Suite Project Parser

Search and extract data from Burp Suite project files (.burp) for use in Claude

Author: Will Vandevanter

Prerequisites

When to Use

Use this skill when you need to get the following from a Burp project:

  • Search response headers or bodies using regex patterns
  • Extract security audit findings and vulnerabilities
  • Dump proxy history or site map data for analysis
  • Programmatically analyze HTTP traffic captured by Burp Suite

Trigger phrases: "search the burp project", "find in burp file", "what vulnerabilities in the burp", "get audit items from burp"

What It Does

This skill provides CLI access to Burp Suite project files through the burpsuite-project-file-parser extension:

  1. Search headers/bodies - Find specific patterns in captured HTTP traffic using regex
  2. Extract audit items - Get all security findings with severity, confidence, and URLs
  3. Dump traffic data - Export proxy history and site map entries as JSON
  4. Filter output - Use sub-component filters to optimize performance on large projects

Installation

/plugin install trailofbits/skills/plugins/burpsuite-project-parser

Usage

Base command:

scripts/burp-search.sh /path/to/project.burp [FLAGS]

Available Commands

Command Description Output
auditItems Extract all security findings JSON: name, severity, confidence, host, port, protocol, url
proxyHistory Dump all captured HTTP traffic Complete request/response data
siteMap Dump all site map entries Site structure
responseHeader='.*regex.*' Search response headers JSON: url, header
responseBody='.*regex.*' Search response bodies Matching content

Sub-Component Filters

For large projects, filter to specific data to improve performance:

proxyHistory.request.headers    # Only request headers
proxyHistory.request.body       # Only request body
proxyHistory.response.headers   # Only response headers
proxyHistory.response.body      # Only response body

Same patterns work with siteMap.*

Examples

Search for CORS headers:

scripts/burp-search.sh project.burp "responseHeader='.*Access-Control.*'"

Get all high-severity findings:

scripts/burp-search.sh project.burp auditItems | jq 'select(.severity == "High")'

Find server signatures:

scripts/burp-search.sh project.burp "responseHeader='.*(nginx|Apache|Servlet).*'"

Extract request URLs from proxy history:

scripts/burp-search.sh project.burp proxyHistory.request.headers | jq -r '.request.url'

Search for HTML forms:

scripts/burp-search.sh project.burp "responseBody='.*<form.*action.*'"

Output Format

All output is JSON, one object per line. Pipe to jq for formatting or use grep for filtering:

scripts/burp-search.sh project.burp auditItems | jq .
scripts/burp-search.sh project.burp auditItems | grep -i "sql injection"