Push Burp requests to ElasticSearch
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
 
 
 
Rasmus Moorats 535b2546c1
update elk
6 months ago
ElasticBurp remove invalid characters from project name 12 months ago
JarShim/burp tidy up project structure 1 year ago
.gitignore tidy up project structure 1 year ago
LICENSE Initial commit 7 years ago
README.md clean up for publishing 1 year ago
WASEQuery.py decode utf-8 by default, add full request/response to each doc 1 year ago
build-jar.sh create a symbolic link to the latest jar 1 year ago
docker-compose.yml update elk 6 months ago
queries.txt Added query examples 7 years ago
requirements.txt add sane number of max threads for piping requests 1 year ago

README.md

ElasticBurp

Scared about the weak searching performance of Burp Suite? Are you missing possibilities to search in Burp? ElasticBurp combines Burp Suite with the search power of ElasticSearch.

Installation

  1. Install ElasticSearch and Kibana.
  2. Configure both - For security reasons it is recommend to let them listen on localhost:
  • Set network.host: 127.0.0.1 in /etc/elasticsearch/elasticsearch.yml.
  • Set host: "127.0.0.1" in /opt/kibana/config/kibana.yml.
  1. Install dependencies in the Jython environment used by Burp Extender with: $JYTHON_PATH/bin/pip install -r requirements.txt
  2. Load ElasticBurp.py as Python extension in Burp Extender.

Usage

See this blog article for usage examples.

WASEQuery

Search ElasticSearch indices created by WASE for

  • responses with missing headers
  • responses with missing parameters
  • all values that were set for a header (e.g. X-Frame-Options, X-XSS-Protection, X-Content-Type-Options, Content-Security-Policy, ...)

...or do arbitrary search queries.

Invoke WASEQuery.py for help message. This blog article shows some examples for usage of WASEQuery.