This extension generates scripts to reissue a selected request. The scripts can be run outside of Burp.

It can be useful to script attacks such as second order SQL injection, padding oracle, fuzzing encoded value, etc.

Features

• Generates scripts for Python, Ruby, Perl, PHP and PowerShell.
• The scripts will replay GET parameters, POST parameters, cookies, basic authentication credentials and other headers.
• The scripts can be exported to a file or to the clipboard.

Limitations

• The order of the parameters is often not preserved (GET and POST).
• Multiple parameters with the same name might not be supported by some libraries.

Usage

• Go to Proxy > History.
• Select the request to generate a script for.
• Right-click on the request and select the "Generate Script" from the context menu.

Requires Java version 7.