-
Notifications
You must be signed in to change notification settings - Fork 233
/
BappDescription.html
42 lines (42 loc) · 1.8 KB
/
BappDescription.html
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
<p>
BurpGPT seamlessly incorporates GPT (Generative Pre-trained Transformer)
models through the OpenAI API, providing a versatile solution for a wide range
of security testing scenarios with its adaptable prompt feature. The
capabilities include (but are not limited to):
</p>
<ul>
<li>
Customisable prompts offer boundless traffic analysis possibilities tailored
to specific requirements, such as:
<ul>
<li>Creating unique payloads.</li>
<li>Supporting vulnerability detection.</li>
<li>Automating extensive HTTP traffic analysis.</li>
</ul>
</li>
<li>
OpenAI results are presented as Informational level issues,
facilitating efficient large-scale post-processing.
</li>
<li>
An intuitive interface for configuring API keys, models, and prompt settings
simplifies the security testing process and enhances overall effectiveness.
</li>
<li>
The Event Log's error handling facilitates seamless resolution of
communication problems with the OpenAI API, including incorrect API keys or
issues related to usage limits and billing.
</li>
</ul>
<p>
After installing the BurpGPT extension, click on the 'BurpGPT' menu item.
Input your OpenAI API key, choose the GPT model, and modify the prompt as
desired. Once the settings are in place, click the 'Apply' button to save your
changes. From then on, each request sent to the passive scanner will also be
assessed by OpenAI according to the user-defined prompt, with the results
displayed as an Information level issue.
</p>
<p>
For further details and examples of using BurpGPT, please visit the repository
at: <a href="https://github.com/aress31/burpgpt">https://github.com/aress31/burpgpt</a>.
</p>