Vulners scanner Plugin Released For Automatic Vulnerability Detection In Passive Scan mode
vulnersCom/burp-vulners-scanner Vulnerability scanner based on vulners.com search API
Burp Suite scanner plugin based on Vulners.com vulnerability database API
- Search fingerprints in http response (inspired by plugin "Software Version Reporter") and check found version in vulners.com vulnerability database
- [Experemental] Check unique URLs in vulners.com finding exploits for such pathsIf Vulners Plugin detects vulnerable software it will show you CVE, advisoroies and even applicable exploits!
Requirements
- Burp Suite - Professional Edition
- Java 1.7
- Maven
Installation
- Clone repository
- From command line run
- mvn package
- find burp-vulners-scanner.jar in /target folder
- open Burp Suite -> Extender -> Add -> path to plugin.jar
Build
Ready to install build burp-vulners-scanner.jar
Software Vulnerability scanner plugin for Burp Suite Professional
Main functionality:
- Detect vulnerable software by discovered fingerprints in HTTP responses
- Check unique urls finding exploits with such paths
