MCP.so
Sign In

Burp Suite MCP Server

@N0el4kLs

About Burp Suite MCP Server

MCP Server for Burpsuite

Basic information

Category

Other

Runtime

java

Transports

stdio

Publisher

N0el4kLs

Config

Add this server to your MCP-compatible client using the configuration below.

{
  "mcpServers": {
    "burpmcp-n0el4kls": {
      "command": "uv",
      "args": [
        "sync"
      ]
    }
  }
}

Tools

No tools detected

We auto-extract tools from the README. The maintainer can list them under a ## Tools heading to populate this section.

Overview

What is Burp Suite MCP Server?

Burp Suite MCP Server is a Model Context Protocol server that enables LLMs to retrieve data from Burp Suite proxy history using SQL-like queries. It is designed for security researchers and penetration testers to streamline security testing and analysis.

How to use Burp Suite MCP Server?

Install the Burp Suite extension (JAR file) and load it in Burp Suite (it starts an HTTP server on port 8889). Install Python dependencies with uv sync, then configure an MCP client (e.g., Claude Desktop) with the command python /ABSOLUTE_PATH_TO/burpsuite_mcp.py.

Key features of Burp Suite MCP Server

  • SQL-like query syntax to retrieve data from Burp Suite proxy history
  • Select specific fields (raw request/response, method, URL, host, body, status code)
  • Avoid excessive context length by returning only needed fields
  • Works with any MCP-compatible client

Use cases of Burp Suite MCP Server

  • Automate analysis of captured HTTP requests and responses during penetration testing
  • Query specific request patterns (e.g., all POST requests to a target host)
  • Integrate LLM-based security analysis with Burp Suite proxy logs
  • Selectively extract response bodies or headers for further inspection

FAQ from Burp Suite MCP Server

How does this server differ from the official Burp Suite MCP server?

It allows you to specify which fields to return from HTTP History, reducing context length. However, it has fewer features and no user interface.

What are the runtime requirements?

Java 17 or higher and Python 3.11 or higher are required. The Burp Suite extension runs on port 8889.

Where does the data come from?

Data is retrieved in real time from the Burp Suite proxy history using SQL-like queries. No external storage is used.

What transport and authentication does it use?

The server communicates via HTTP on localhost port 8889. No authentication is mentioned.

What are the known limitations?

Compared to the official server, it has fewer features and no graphical UI.

Comments

More Other MCP servers