This extension enchances Burp Suite's Active Scan by adding template engine specific payloads to detect remote code execution via server-side template injection. The extension utilizes polyglot payloads and code context escaping for efficient and accurate detection.
Run an Active Scan against the target. Identified vulnerabilities will be reported as scanner issues.
To install the extension, download the jar file from the releases page, and add it to Burp Suite from Extensions > Add.
