re-Inspector is a fully passive Burp extension written in Python. It helps to identify security issues including missing/misconfigured security headers and sensitive information in HTTP Response for the selected target. It can extract all the vulnerable endpoints in simple text format, as well as issues, can be CSV format which can be imported directly in Resolve.
Reporting
Currently, re-Inspector helps to generate reports in CSV and text format which contains vulnerable endpoints.
- Discovering security issues through the passive scan.
- Analysing HTTP response for sensitive information.
- Low false positive rate.
- Generate report in CSV and Text format.
Once target application crawling is completed, right-click on the URL from anywhere and select “Send to re-Inspector”. Open re-Inspector tab from extension bar. Check all the vulnerabilities which are needed to be tested and click on Scan.
Download latest python file
- Support for multiple host.
- Directory specific scan.
- More vulnerabilities to be added.
- Identifying API keys and secrets.