Projects / Burp intruder

Burp intruder

Burp intruder is a tool that facilitates automated attacks against Web-enabled applications. It is highly configurable and can test for common Web application vulnerabilities such as SQL injection, cross-site scripting, buffer overflows, and directory traversal as well as performing brute force attacks against authentication schemes, enumeration, parameter manipulation, trawling for hidden content and functionality, session token sequencing and session hijacking, data mining, concurrency attacks, and application-layer denial-of-service attacks.

Operating Systems

Recent releases

  •  11 Aug 2005 12:06

    Release Notes: A regex-based search and highlight function has been added to all text panes. Server HTML responses are now rendered as Web pages. Intruder is now fully integrated with the other burp tools. Auto payload placement now understands multipart content encoding. Preferences are now optionally persistent across program launches. "HTTP 100 Continue" responses are now correctly handled. All X509 certificates encountered are logged.

    •  05 May 2004 03:50

      No changes have been submitted for this release.


      Project Spotlight


      A Fluent OpenStack client API for Java.


      Project Spotlight

      TurnKey TWiki Appliance

      A TWiki appliance that is easy to use and lightweight.