https://github.com/hcl-tech-software/appscan-standard-burp-importer
An extension which allows the user to import a Burp file containing a list of requests into AppScan
https://github.com/hcl-tech-software/appscan-standard-burp-importer
appscan appscan-standard
Last synced: 3 months ago
JSON representation
An extension which allows the user to import a Burp file containing a list of requests into AppScan
- Host: GitHub
- URL: https://github.com/hcl-tech-software/appscan-standard-burp-importer
- Owner: HCL-TECH-SOFTWARE
- Created: 2023-06-27T10:06:50.000Z (almost 3 years ago)
- Default Branch: main
- Last Pushed: 2024-09-12T11:51:13.000Z (almost 2 years ago)
- Last Synced: 2025-10-02T07:29:48.013Z (9 months ago)
- Topics: appscan, appscan-standard
- Language: C#
- Homepage: https://github.com/HCL-TECH-SOFTWARE/appscan-standard-burp-importer
- Size: 152 KB
- Stars: 4
- Watchers: 4
- Forks: 1
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# AppScan Standard - Burp Traffic Importer extension
This library is an extension for HCL AppScan Standard.
It allows the user to import an XML-formatted Burp traffic file containing a list of requests into AppScan. AppScan will explore these requests as if they were explored manually.
## Installation
To install, the extension must be imported into AppScan Standard using the AppScan extension manager:
1. In AppScan Standard, go to **Tools > Extensions > Extension Manager**
2. Import the extension *BurpTrafficImporter.zip* using **Add Extensions From > This Computer**
3. Restart AppScan Standard for the change to take effect.
4. Open **Extension Manager**.
5. Click **Trust** to trust the extension.
## Usage
Once installed in AppScan, the following steps outline the proper usage:
1. Navigate to **Tools > Extensions > Import Burp Traffic**
2. Click **Browse** and select an XML-formatted Burp traffic file. This is exported from Burp under the **Proxy > HTTP History** tab using the **Save Item(s)** right-click context menu.
3. *(Optional)* Un-check **Use first request as Starting Point URL** if you don't want the extension to set the **Configuration > Starting URL** during Import.
*Note: If a **Starting URL** is not assigned, AppScan Standard will assign one during Manual Explore import.*
4. *(Optional)* The **Select domains to add to Additional Domains** list will be populated with any additional domains found in the Burp file. Check any you want AppScan to test and the extension will add them to the **Configuration > Starting URLs & domains > Domains being tested** list.
5. Click **Import**
the extension will then read the Burp traffic file, convert it to a temporary EXD (EXplore Data) file and subsequently import it. AppScan will then explore these requests automatically. You can then decide whether to continue with a Test stage or more manual exploring.
## Building
### Prerequisites:
- You must be able to compile a C# Project.
- You must have 7-zip installed (http://www.7-zip.org/).
- You must have AppScan Standard version 10.0.0 or later.
#### Skip this step if AppScan Standard is installed in the default folder: *C:\Program Files (x86)\HCL\AppScan Standard*
Attach DLLs from AppScan install folder:
1. Open *BurpTrafficImporter.sln* with Microsoft Visual Studio or other IDE of your choice.
2. Locate and right-click on the *BurpTrafficImporter* project.
3. Click **Add > Reference**
4. In the Browse section, select **Browse** and add the following DLLs from the AppScan folder:
- AppScanSDK.dll
- HttpProxy.dll
- CommonEngineProvider.dll
- UserControls.dll
- ScanTypes.dll
- InfraTypes.dll
The file *BurpTrafficImporterExt.zip* is automatically generated during build in the sub folder: *\appscan-standard-BurpTrafficImporter\output\net472*
### Troubleshooting
If you get error *MSB3821*:
1. Right-click on the ZIP file or cloned file *BurpImportForm.resx*.
2. In the **General** tab, select **Unblock** and click **OK**.