For Burp Suite Enterprise Edition
Please note that extensions are written by third party users of Burp, and PortSwigger makes no warranty about their quality or usefulness for any particular purpose.
This extension will raise an informational scan issue of certain confidence containing a list of all URLs found in the Site Map. This is done at the beginning of the Audit phase.
- Build the extension using
./gradlew build. Alternatively, download the extension from the "Releases" section. - Load the extension into Burp Enterprise, and apply the extension to your site.
- Run a scan as normal.
- Check your information-level issues.
- If you do not have Gradle already installed, follow the installation instructions here.
- Once Gradle is installed, run
./gradlew buildfrom the extension directory using the command line. - Make sure you are using the latest version of Gradle.
If no changes to the code are required, a prebuilt JAR file is available under Releases. It is preferable to compile your own JAR file.
- Adjust to use a scan check instead of writing a file.
- Fix format of filename to prevent issues on Windows machines.
- Write the site map to the file system at specific intervals throughout the Scan.
- Rewritten in Montoya API.
- Improved file writing mechanism.
- Contains initial functionality.
- Written using the legacy Extender API.