👉 Introducing custom scan checks to Burp Suite Enterprise Edition.

---------------

BChecks, in a nutshell, are easy-to-use custom-created scan checks that enable you to extend the capabilities of Burp Scanner in a quick and simple way. We recently released BChecks to Burp Suite Professional and, following fantastic feedback from the user community, we've now made this feature available to our Burp Suite Enterprise Edition users as well.

👉 How can my organization benefit from BChecks?

---------------------

The advantage of using BChecks to support automated, scheduled scanning within your organization is the amount of time it takes. Or rather, how little time it takes. Unlike creating a built-in scan check where you're dependent on waiting for it to be added natively to Burp Suite, you can import a BCheck and start scanning for the specific vulnerability straight away.

👉 What BChecks are available?

------------

The BChecks GitHub repository already contains a wide variety of custom scan checks, created by both PortSwigger developers and the Burp Suite user community. Some highlights include:

➡️Blind SSRF via out-of-band detection.

➡️Exposed git directory.

➡️Leaked AWS tokens.

➡️Log4Shell via out-of-band detection.

➡️Server-side prototype pollution.

➡️Suspicious input transformation.

Adding BChecks to Burp Suite Enterprise Edition

--------------

BChecks are available, and ready to use in Burp Suite Enterprise Edition right now. To get started, simply follow the steps below:

➡️Log in to Burp Suite Enterprise Edition as a user with permission to manage extensions.

➡️From the settings menu, select Extensions to go to the Extension library.

➡️On the BChecks tab, click Upload BCheck.

➡️Select the BCheck you want to upload.

For further information and guidance, please refer to the BChecks in Burp Suite Enterprise Edition documentation.

#Cybersecurity #Ethicalhacker #BurpSuite #hacks