AutoRepeater: Automated HTTP Request Repeating With Burp Suite

BSidesROC 2018

Presented by: Justin Moore
Date: Saturday April 14, 2018
Time: 16:00 - 16:50
Location: Track 1

Burp Suite is an intercepting HTTP Proxy, and it is the defacto tool for performing web application security testing. While Burp Suite is a very useful tool, using it to perform authorization testing is often a tedious effort involving a "change request and resend" loop, which can miss vulnerabilities and slow down testing. AutoRepeater, an open source Burp Suite extension, was developed to alleviate this effort. AutoRepeater automates and streamlines web application authorization testing, and provides security researchers with an easy-to-use tool for automatically duplicating, modifying, and resending requests within Burp Suite while quickly evaluating the differences in responses.

Justin Moore

Justin Moore works for NCC Group as a Senior Security Consultant. He hacks things and does stuff, sometimes it’s the other way around.


KhanFu - Mobile schedules for INFOSEC conferences.
Mobile interface | Alternate Formats