Skip to content
/ burp-pii-scan Public

Burpsuite extension writed in Python that looking for PII data (CPF) in passive requests, validate CPF and create issue.

2 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

jmessiass/burp-pii-scan

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1 Commit
images
images
 
 
README.md
README.md
 
 
burp_pii_scan.py
burp_pii_scan.py
 
 

Repository files navigation

Burp Extension - PII Scanner

Extension that looking for PII data in passive requests.

Table of contents

Installation

  1. Download Jython standalone JAR, for example version 2.7.3
  2. Go to Extensions->Extensions settings. Set path inside Location of Jython standalone JAR file in Python enviroment.

Install Jython

Python Env

  1. Unzip the burp extension PII-SCAN.zip
  2. Go to Extensions->Installed. Click Add. Set Extension type to Python. Set burp_pii_scan.py inside Extension file and press Next button.

Add Extension 1

Add Extension 2

Add Extension 3

Usage

Install extension. Browse sites through Burp proxy. If the extension found PII data it will create a log in console, create a issue with the data leaked and how to remediate.

Data Leaked Log

Data Leaked Issue

About

Burpsuite extension writed in Python that looking for PII data (CPF) in passive requests, validate CPF and create issue.

Topics

python plugin python3 appsec burpsuite sectools

Resources

Readme
Activity

Stars

2 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages