Welcome to the BurpSuite SSL Scanner Extension! This powerful extension enhances the capabilities of BurpSuite by providing advanced SSL scanning features, allowing you to thoroughly analyze the security of SSL/TLS implementations in web applications.
Comprehensive SSL/TLS Scanning: Conduct thorough scans to identify potential vulnerabilities in SSL/TLS implementations. Customizable Configuration: Tailor the scanning process to your needs with a variety of customizable options.
Burp Suite Professional (version 1.6 or later)
- git clone : https://github.com/onvio/SSL-Inspector
- In the Burpsuite extension tab press '+'
- Choose the SSL Inspector jar from the cloned repository in out/artifacts/SSL_Inspector_jar/SSL-Inspector.jar
- Done!
To trigger these checks, simply initiate a standard passive scan.
To configure SSL/TLS checks, add or remove ciphers or TLS settings in the SSL Inspector. Remember to click "Save" after making any changes.
We welcome contributions and feedback! If you encounter any issues or have suggestions for improvement, please create an issue or submit a pull request. Happy scanning!