/burp-vulners-scanner

Vulnerability scanner based on vulners.com search API

Primary LanguageJavaGNU Lesser General Public License v3.0LGPL-3.0

burp-vulners-scanner

Current Release Downloads PayPal

Description

Burp Suite scanner plugin based on Vulners.com vulnerability database API

  • Search fingerprints in http response (inspired by plugin "Software Version Reporter") and check found version in vulners.com vulnerability database
  • [Experemental] Check unique URLs in vulners.com finding exploits for such paths

If Vulners Plugin detects vulnerable software it will show you CVE, advisoroies and even applicable exploits!

How to use

Burp Vulners plugin Tutorial Video

Requirements

  • Burp Suite - Professional Edition
  • Java 1.7
  • Maven

Installation

  1. Clone repository
  2. From command line run
    mvn package
    
  3. find burp-vulners-scanner.jar in /target folder
  4. open Burp Suite -> Extender -> Add -> path to plugin.jar

Build

Ready to install build burp-vulners-scanner.jar