Burp Suite Navigation Recorder
Item logo image for Burp Suite Navigation Recorder

Burp Suite Navigation Recorder

portswigger.net
Featured
5.0(

3 ratings

)
Item media 1 screenshot

Overview

Improve your Burp Suite scan coverage by manually capturing how to perform complex actions on your website.

Burp Suite Navigation Recorder is a Chrome extension that enables you to record complex navigation sequences, such as SSO logins, using your browser. You can then import the recording into Burp Suite Professional and Burp Suite Enterprise so that any future scans of the website can replicate your recorded actions. This can improve your Burp Suite scan coverage by increasing the attack surface that the Scanner is able to audit effectively. To find more information about Burp Suite please visit: https://portswigger.net/burp To record an action sequence: 1. Click the Burp Suite Navigation Recorder extension icon at the top right. 2. Click start recording. 3. Load the web page where you want to begin capturing and carry out the action sequence. 4. Click the extension icon to stop recording and click copy to clipboard to save the data from the recording to your clipboard in JSON format. 5. Paste the JSON from your clipboard into Burp Suite. Note that this extension works by recording clicks, pasted data, and keystrokes. To ensure that your action sequence is recorded properly, please avoid using any autocomplete functionality. The recorded data on your clipboard will be automatically cleared when you paste it into Burp Suite.

5 out of 53 ratings

Google doesn't verify reviews. Learn more about results and reviews.

Review's profile picture

Tyler SparksOct 22, 2020

Very cool new addition to help with some of the areas I was struggling to scan. Thank you!

4 out of 4 people found this helpful

Details

  • Version
    1.5.6
  • Updated
    February 17, 2024
  • Size
    277KiB
  • Languages
    English (UK)
  • Developer
    PortSwigger Ltd
    6 Booths Park Chelford Road Knutsford WA16 8ZS GB
    Website
    Email
    chrome.development@portswigger.net
  • Trader
    This developer has identified itself as a trader per the definition from the European Union.

Privacy

The developer has disclosed that it will not collect or use your data. To learn more, see the developer’s privacy policy.

This developer declares that your data is

  • Not being sold to third parties, outside of the approved use cases
  • Not being used or transferred for purposes that are unrelated to the item's core functionality
  • Not being used or transferred to determine creditworthiness or for lending purposes

Support

For help with questions, suggestions, or problems, visit the developer's support site

Related

Tamper Dev

4.0(28)

Intercept and edit HTTP/HTTPS requests and responses as they happen without the need of a proxy.

Tamper Chrome (extension)

3.3(234)

Allows the user to modify requests as they happen.

HackBar

2.1(16)

A HackBar for google chrome/firefox browser. Small tool for pentesting websercurity.

Rapid7 AppSec Plugin

3.7(3)

Rapid7 AppSec Plugin

FoxyProxy

3.8(759)

Easy to use advanced Proxy Management tool for everyone

OWASP Penetration Testing Kit

4.9(42)

OWASP Penetration Testing Kit

Shodan

4.5(132)

The Shodan plugin tells you where the website is hosted (country, city), who owns the IP and what other services/ ports are open.

Hack-Tools

4.7(19)

The all in one Red team extension for web pentester

FoxyProxy Basic

3.9(75)

Easy to use advanced Proxy Management tool for everyone

HackBar

4.2(48)

A browser extension for Penetration Testing

Vulners Web Scanner

4.5(19)

Tiny vulnerability scanner based on vulners.com vulnerability database. Passively scan websites while you surf internet!

XSS

5.0(7)

Web Development tool

Tamper Dev

4.0(28)

Intercept and edit HTTP/HTTPS requests and responses as they happen without the need of a proxy.

Tamper Chrome (extension)

3.3(234)

Allows the user to modify requests as they happen.

HackBar

2.1(16)

A HackBar for google chrome/firefox browser. Small tool for pentesting websercurity.

Rapid7 AppSec Plugin

3.7(3)

Rapid7 AppSec Plugin

FoxyProxy

3.8(759)

Easy to use advanced Proxy Management tool for everyone

OWASP Penetration Testing Kit

4.9(42)

OWASP Penetration Testing Kit

Shodan

4.5(132)

The Shodan plugin tells you where the website is hosted (country, city), who owns the IP and what other services/ ports are open.

Hack-Tools

4.7(19)

The all in one Red team extension for web pentester

Google apps