Generate security-oriented sequence diagrams and fine-grained parsed traffic from Burp Suite Proxy history.
This extension is based on the Proxy Enriched Sequence Diagrams (PESD) format. Discover the format here and read the launch post on our doyensec blog.
Select and send specific traffic entries from Burp Suite Tabs to the Exporter tab.
Specify a mode of operation for the export:
- Domains as Actors - Each domain involved in the traffic is represented as an actor in the diagram. Suitable for multi-domain flows analysis
- Endpoints as Actors - Each endpoint (path) involved in the traffic is represented as an actor in the diagram. Suitable for single-domain flows analysis
Auto-Export is enabled by default, sending items to the extension will directly result in a export. User is redirected to the Browser view and the items are cleaned after the export within the extension
-
Expandable Metadata. Underlined flags can be clicked to show the underlying metadata from the traffic in a scrollable popover
-
Masked Randoms in URL Paths. UUIDs and pseudorandom strings recognized inside path segments are mapped to variable names
<UUID_N>/<VAR_N>. The re-renderization will reshape the diagram to improve flow readability. Every occurrency with the same value maintains the same name -
Notes. Comments from Burp Suite are converted to notes in the resulting diagram. Use
<br>in Burp Suite comments to obtain multi-line notes in PESD exports -
Theme. Use MermaidJS theme veriables to build your own sequence diagram style set in the extension
-
Embedded MD editor. Edit the generated diagram directly in the export to add details (e.g. internal calls to microservices, notes, everything allowed by mermaid JS)
-
Highlight colors from Burpsuite are ported to the sequence diagram arrow colors
-
Invert Proxy History order. If you have the last request on top, activate it
-
Save as :
SVG,Markdown,JSONmetadata, explorableHTML
By default, a generic diagram follows the basic PESD syntax . PESD Exporter supports syntax and metadata extension via templates execution.
Templates are iterations that occur on the basic PESD object in order to enrich its content by:
- Adding new Flags or modifying existing ones
- Framing sections of the resulting diagram. Read about MermaidJS Alt Syntax.
- Enriching the metadata with new findings
Approach Idea : Users can leverage this extensibility to parse metadata and markdown in order to add new value in both of them by adding new logic.
The Extension currently supports the following templates :
-
OAuth2 / OpenID Connect. The template matches standard OAuth2/OpenID Connect flows and adds related flags + flow frame. Oauth2 supported flows : Implicit Grant and Code Grant. OpenID supported flows : Code Grant, Implicit Grant and Hybrid flow. Respectively based on rfc6749 and openid-connect-core-1_0
-
SAML SSO. The template matches Single-Sign-On flows with SAML V2.0 and adds related flags + flow frame. Based on SAML V2.0 , supported flows:
- SP-initiated SSO using a Redirect Binding for the SP-to-IdP message and a POST Binding for the IdP-to-SP message
- SP-initiated SSO using a POST Binding for the message and an Artifact Binding for the message
- IDP-initiated SSO using a POST Binding for the IdP-to-SP message; no SP-to-IdP message is involved.
Template matching example for SAML SP-initiated SSO with redirect POST:
- Clone the repository
- Import it in Netbeans / your preferred IDE
- Run gradle build fatjar to compile the extension
- Import the compiled JAR in
build/libs/pesd-exporter-all.jar
Find the template implementation guide.
Author and Maintainer: Francesco Lacerenza (@lacerenza_fra)
This project was made with love in the Doyensec Research island during the internship with 50% research time.
