burpsuite-mcp-server
1
The Burpsuite MCP Server provides MCP protocol integration with Burpsuite Professional for AI-driven web security testing and scanning processes. It includes tools to start scans, assess vulnerabilities, and access proxy data. It supports both installation via Smithery and manual setup.
Overview
This project is a Model Context Protocol (MCP) server that integrates with Burpsuite Professional, enhancing web security testing and vulnerability scanning capabilities for AI assistants. It offers tools to start vulnerability scans, check scan statuses, access HTTP/HTTPS traffic, and explore site structures discovered during scans.
Features
- start_scan: Initiates a vulnerability scan on a specified URL.
- get_scan_status: Retrieves the current status of a scan.
- get_scan_issues: Fetches vulnerability issues with severity filtering options.
- get_proxy_history: Accesses HTTP/HTTPS traffic captured by Burp Proxy with optional filtering by host, method, or status code.
- get_site_map: Explores the site structure from the scanning process with optional URL parameter filtering.
Resources
- Scan Results
- Issue Details
- Proxy History
- Site Map
Installation
The server can be installed via Smithery or manually by building the server and updating the MCP settings configuration.