Data

Tools

Indexes

Applications

Experiments

Awesome

An open API service indexing awesome lists of open source software.

https://github.com/ryosukedtomita/airis-burp-extensions

[WIP]: Burp Suite extensions for analyzing requests and responses using an organization-controlled LLM, instead of Burp AI.
https://github.com/ryosukedtomita/airis-burp-extensions

burp-extensions gradle jacoco java llm-tools

Last synced: 8 days ago
JSON representation

[WIP]: Burp Suite extensions for analyzing requests and responses using an organization-controlled LLM, instead of Burp AI.

Awesome Lists containing this project

README 

          
# AIris: Artificial Intelligence Request Insight System



![mit license](https://img.shields.io/github/license/RyosukeDTomita/airis)

[![Test](https://github.com/RyosukeDTomita/airis-burp-extensions/actions/workflows/test-coverage.yml/badge.svg)](https://github.com/RyosukeDTomita/airis-burp-extensions/actions/workflows/test-coverage.yml)

[![codecov](https://codecov.io/gh/RyosukeDTomita/airis-burp-extensions/branch/main/graph/badge.svg)](https://codecov.io/gh/RyosukeDTomita/airis-burp-extensions)

[![OpenSSF Scorecard](https://api.securityscorecards.dev/projects/github.com/RyosukeDTomita/airis-burp-extensions/badge)](https://securityscorecards.dev/viewer/?uri=github.com/RyosukeDTomita/airis-burp-extensions)

[![Scorecard supply-chain security](https://github.com/RyosukeDTomita/airis-burp-extensions/actions/workflows/scorecard.yml/badge.svg)](https://github.com/RyosukeDTomita/airis-burp-extensions/actions/workflows/scorecard.yml)

[![CodeQL](https://github.com/RyosukeDTomita/airis-burp-extensions/actions/workflows/codeql.yml/badge.svg)](https://github.com/RyosukeDTomita/airis-burp-extensions/actions/workflows/codeql.yml)



AIris



## INDEX



- [ABOUT](#about)

- [HOW TO USE](#how-to-use)

- [ENVIRONMENT](#environment)

- [PREPARING](#preparing)

- [For Developers](#for-developers)



---



## ABOUT



This is an [Burp Suite](https://portswigger.net/burp) extension that allows you to **LLM custom API key and API endpoint**, and send the selected request and response from within Burp Suite as context for analysis by an LLM.



### Why AIris?



- [Burp AI](https://portswigger.net/burp/ai) is not supported in the free version of Burp Suite.

- Some companies only allow the use of organization-managed AI services, such as [Azure OpenAI](https://learn.microsoft.com/ja-jp/azure/ai-foundry/openai/overview), [Amazon Bedrock](https://aws.amazon.com/jp/bedrock/).



---



## HOW TO USE



1. Open Burp Suite and add .jar file.

    ![extensions](./assets/add_extensions.png)

2. Add Your OpenAI API Key in the Extension settings.

    ![api-key](./assets/settings.png)

3. Use Extensions

    ![use](./assets/example.png)

4. Result

    ![response](./assets/example2.png)



### Using Azure Open AI



Replacing the endpoint will make it work.

Include the model name and version as shown below.



```

https://.openai.azure.com/openai/deployments//chat/completions?api-version=

e.g. https://sigma-oai-westus.openai.azure.com/openai/deployments/gpt-40-mini/chat/completions?api-version=2024-02-15-preview

```



### Using Amazon Bedrock(Claude)



I'll test it soon.

Looking for volunteers to help verify functionality.



---



## ENVIRONMENT



This project is just Vibe Coding right now.

I'm improveing it little by little.



- Docker Image: gradle:9.0.0-jdk21-noble

- Java: 21

  - montoya-api: 2025.7

- Gradle: 9.0.0



---



## PREPARING



```shell

cd airis

./build.sh

```



---



## For Developers



### Format code



```shell

cd airis

./gradlew fmt

```



### Test code



```shell

cd airis

./gradlew test --tests 

# print debug

./gradlew test --tests  --info

# all test

./gradlew test

```