B

Burp Suite

Connects Claude Code to Burp Suite Professional for real-time web security analysis via a Java plugin and Python MCP bridge.

Burp·No reviews yet
Repo
Share:

About

Connects Claude Code to Burp Suite Professional for real-time web security analysis via a Java plugin and Python MCP bridge.

Example tools

Illustrative tool names — the actual tool set is defined by the server at runtime.

web_search
Search the web and return top results
fetch_url
Fetch and return the contents of a URL

Screenshots

No screenshots yet.

Frequently Asked Questions

Common questions about Burp Suite.

What does the Burp Suite MCP do?
This MCP integrates Claude Code with Burp Suite Professional to enable real-time web security analysis. It uses a Java plugin within Burp Suite and a Python bridge to facilitate this connection, allowing for dynamic security testing during development and analysis workflows.
How can I install Burp Suite MCP in an MCP client?
Installation typically involves cloning the repository from GitHub and running the Python bridge. Specific setup steps for integration with clients like Claude Desktop, Cursor, or Cline depend on their individual plugin or external tool integration features. Refer to the client's documentation for detailed instructions.
Does the Burp Suite MCP require an API key or other credentials?
The Burp Suite MCP itself does not require an API key or explicit credentials for its operation. However, it connects to Burp Suite Professional, which is a commercial product and requires a valid license to use. The Claude Code environment might also have its own authentication requirements.
What are the primary capabilities exposed by this MCP?
The MCP primarily exposes real-time web security analysis capabilities by linking Claude Code's analytical power with Burp Suite's interception and scanning features. This enables developers to identify and address vulnerabilities as they write or analyze code within supported environments.
Is there a cost associated with using the Burp Suite MCP?
The Burp Suite MCP itself is open-source and available on GitHub, so there is no direct cost for the MCP software. However, it relies on Burp Suite Professional, which is a commercial product requiring a paid license. The pricing for Burp Suite Professional is determined by PortSwigger.
What is a prerequisite for running this Burp Suite MCP?
A key prerequisite for this MCP is a licensed installation of Burp Suite Professional and a compatible Java Development Kit (JDK) for the Burp plugin. Additionally, a Python environment is needed to run the MCP bridge, and Claude Code must be configured to interact with it.

Install Burp Suite

Claude Desktop

Add this to claude_desktop_config.json.

{
  "mcpServers": {
    "burp-suite": {
      "command": "npx",
      "args": [
        "-y",
        "@modelcontextprotocol/server-burp-suite"
      ]
    }
  }
}

Cursor

Add this to ~/.cursor/mcp.json.

{
  "mcpServers": {
    "burp-suite": {
      "command": "npx",
      "args": [
        "-y",
        "@modelcontextprotocol/server-burp-suite"
      ]
    }
  }
}

VS Code

Add this to your workspace settings.json.

{
  "mcp.servers": {
    "burp-suite": {
      "type": "stdio",
      "command": "npx",
      "args": [
        "-y",
        "@modelcontextprotocol/server-burp-suite"
      ]
    }
  }
}

Reviews

Sign in to leave a review.

No reviews yet. Be the first!

Discussion(0)

Sign in to join the discussion.

No comments yet.