Burp Suite - Secret Finder (beta v0.1)
A Burp Suite extension to help pentesters to discover a apikeys,accesstokens and more sensitive data using a regular expressions. SecretFinder process any HTTP response (support javascript file) and support Passive and Active scan. This extension has been developed by M'hamed Outaadi (@m4ll0k).
Add RegEx
- Download SecretFinder and open it with any editor
- Now add your regex and save the file
Example
Install
- download
SecretFinder
Requirements
- jython
- burpsuite