BurpMCP
BurpMCP is a Burp Suite extension that incorporates AI to help security testers find vulnerabilities in HTTP-based applications. It focuses on enhancing manual testing with LLM capabilities and offers various features to streamline application security processes.
What is BurpMCP?
BurpMCP is a Burp Suite extension that integrates AI capabilities to assist in application security testing and vulnerability research.
How does BurpMCP enhance manual testing?
It uses large language models to provide intelligent assistance, helping testers navigate complex attack surfaces and identify vulnerabilities.
What protocols does BurpMCP support?
BurpMCP supports HTTP 1.1 and 2, ensuring reliable testing across different HTTP versions.
Can BurpMCP be customized?
Yes, tool definitions can be modified to suit specific use cases, although this requires rebuilding the extension.
What are some known issues with BurpMCP?
LLMs may forget to add important request components, and some MCP clients may not handle errors well, requiring careful client selection.