Skip to content

Burp Suite plugin

Vulners Burp Suite Plugin uses the vulnerability database API to improve the security auditing capabilities of Burp Suite.

  • Identify software versions in HTTP responses and verify them against the vulnerability database for known vulnerabilities, inspired by the 'Software Version Reporter' plugin..
  • Explore unique URLs on to discover potential exploits associated with specific paths..

When vulnerable software is detected, it provides detailed insights, including CVEs, advisories, and applicable exploits, directly within the Burp Suite interface.

How to use

Video tutorial:

Burp Vulners plugin Tutorial Video


  • Burp Suite Professional Edition
  • Java 1.7
  • Maven


  1. Clone the Plugin Repository:

  2. Navigate to the VulnersCom/burp-vulners-scanner GitHub page and clone the repository to your local machine.

  3. Package the Plugin:

Open a command line or terminal window in the cloned repository's directory and execute the following Maven command::

mvn package
3. Locate the Plugin JAR File:

After packaging, find the burp-vulners-scanner.jar file in the /target folder within the repository directory.

  1. Install the Plugin in Burp Suite:

To install the plugin, open Burp Suite and go to the Extender tab. Then, click on Add and select the path to the burp-vulners-scanner.jar file to install the plugin.

Download the Pre-built Plugin

If you prefer not to build the plugin yourself, download the ready-to-install build from the latest release on GitHub page.

Back to top