I’m thrilled to publish my first BurpSuite plugin that I’ve built. The purpose is to find bugs on websites without typing any code, just by doing a normal browsing. This first version focuses only on XSS vulnerability discovery. It works by tweaking every request sent from the proxy.
It’s very useful for bug bounty purposes. You can download it here: https://github.com/lucsemassa/burp_bug_finder
