Skip to content

Burp and GAT Core Integration - Risk-based Information Security Management Platform

Notifications You must be signed in to change notification settings

wmspydev/burp-gat-core-integration

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

58 Commits
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

Burp Extension, integration GAT Digital

Submitting Issues analyzed in Burp based on Target selection -> Single or multiple Hosts to GAT CORE


Installation

  • Requirements:
    1. BURP PROFESSIONAL
    2. Jython JAR

First step - Clone the repository for the location where Burp Professional is installed..

Click on Tab Extensions click on settings, new windows open.

  1. Go to subTab Extensions set to "Python Evironment"
    • Location of Jython standalone JAR file, set to the folder / file: "~ \ burp-extension \ jython \ jython-standalone-2.7.2.jar"

Alt text

  1. Go to subTab Extensions
    • Clicking on "Add", following the wizard on "Extension Details" select "Type" Python and select the main.py file at: "~\burp-gat-core-integration\src\main.py"

Alt text

Click on Tab GAT Core Settings

  • Configure your API Url and API Token, click Save. Reload the GAT Core Integration extension in Tab ** Extender **
  • If u are using PROJECT ID it´s print hash in textbox

Alt text

  • When you finish entering the Url, Token and Reload, popup will be displayed confirming successful authentication

Alt text

New Menu for GAT Infosec on TARGET in Extensions subMenu

Alt text

Using the extension

In the "Target" Tab when clicking with the right mouse button, the option submenu "Extensions" click on "GAT CORE Integration" --> "Sending Issues to GAT CORE" will be available in the drop-down menu

Alt text

After clicking on "Sending Issues", you must confirm project to send hosts or not use project.

Alt text

The number of hosts will be confirmed and their number of issues. After sending in the Tab "Extender", subTab "Output" will be confirmed the processing and sending of Issues.

Alt text

Checking-in GAT CORE

When accessing "GAT Core", notifications of all processes sent via BURP Extension will be available

Alt text

Accessing the side menu "Integration" it is possible to check more information about the processing of the files with the Notes sent to the "GAT Core"

Alt text

About

Burp and GAT Core Integration - Risk-based Information Security Management Platform

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published