Burp Suite Professional BChecks developed both by PortSwigger and the community. In the realm of cybersecurity and web application testing, Burp Suite Professional stands as a formidable tool.
Within its arsenal, the BChecks extension emerges as a potent ally, combining the expertise of PortSwigger and the vibrant contributions of the community.
This comprehensive guide dives deep into the world of BChecks, shedding light on its features, documentation, and a plethora of practical examples.
Join us on a journey to unlock the full potential of Burp Suite’s BChecks for enhanced security testing and vulnerability analysis.
If you click the Icon in the top right of the BChecks sub tab in the Extensions tab you will be linked to the documentation.
Online documentation can be found here
BChecks: Houston, we have a solution! (blog)
Please issue a pull request and follow the process outlined here
Example BChecks to help you get started covering
BChecks for specific vulnerabilities which have a CVE
BChecks for specific vulnerability classes as opposed to discrete vulnerabilities.
Other BChecks doing all the wonderful things which we didn’t imagine
Journalists use OSINT to verify public information before publishing. In 2026, misinformation, AI-generated images, fake…
Docker is an open-source platform that lets you package and run applications inside containers. Each container…
PostgreSQL (often called Postgres) is an open-source relational database system. It supports advanced features like JSON…
Xrdp is an open-source server that lets you connect to your Ubuntu machine from another computer…
Apache Tomcat is an open-source web server and Java servlet container. It is one of the…
Keeping your Ubuntu system updated is one of the best ways to protect it. Security…