π₯Installation
π Prerequisites
Before installing Burp Bounty Pro, ensure you have the following:
β Burp Suite Professional installed on your system (Community Edition has limited scanning capabilities)
β Java Runtime Environment (JRE) version 14 or above
π§ Installation Steps
1οΈβ£ Download the Extension
Obtain the latest version of Burp Bounty Pro from the official website at bountysecurity.ai or from your purchase confirmation email.
2οΈβ£ Launch Burp Suite
Open Burp Suite Professional.
3οΈβ£ Add the Extension
Navigate to the Extensions tab (formerly called "Extender")
Click on the Installed sub-tab
Click the Add button
4οΈβ£ Configure the Extension
In the dialog that appears:
Select Java as the extension type
Click Select file... and choose the
BurpBountyPro.jarfile you downloadedClick Next to proceed with the installation
5οΈβ£ Verify Installation
Ensure that:
β The extension is listed in the Installed extensions list with the checkbox ticked
β No errors appear in the extension output panel
β The Burp Bounty Pro tab appears in the main Burp Suite tab bar
6οΈβ£ Start Using Burp Bounty Pro
Access the newly added Burp Bounty Pro tab in the Burp Suite interface. You're ready to begin configuring your profiles and start your security testing! π
π First Launch
When Burp Bounty Pro loads for the first time, it will:
π¦ Auto-load default profiles β 254 pre-configured scanning profiles are loaded from the bundled
BurpBountyDatadirectoryπ Auto-load default rules β 27 Smart Scan rules are loaded for automated vulnerability detection
π Initialize default variables β Global variables like
{REDIRECT_DOMAIN}are set to their default values
A new Burp Bounty Pro tab will appear in the main Burp Suite interface with sub-tabs for Dashboard, Scanner, Profiles, Rules, Options, Variables, License, and About.
π License Activation
Navigate to the Burp Bounty Pro tab
Click the License sub-tab
Enter your license key
Click Activate
β
Verifying Installation
After installation, verify that:
β The Burp Bounty Pro tab appears in the main Burp Suite window
β The Dashboard sub-tab shows the scan control buttons (Pause All, Resume All, Stop, Clear Issues)
β The Profiles sub-tab lists loaded profiles across all three tables:
π― Active Profiles β with columns: Enabled, Profile Name, Tags, Author's Twitter
π¨ Passive Request Profiles β with columns: Enabled, Profile Name, Tags, Author's Twitter
π© Passive Response Profiles β with columns: Enabled, Profile Name, Tags, Author's Twitter
β The Rules sub-tab shows the 27 default rules
π Post-Installation
After installing Burp Bounty Pro, you may want to:
π¦ Review Default Profiles β Familiarize yourself with the 254 default profiles provided and adjust them to fit your testing needs. Use the tag dropdown to browse by category (XSS, SQLi, CVEs, etc.)
π Explore the Quick Start β Follow the Quick Start guide to run your first scan in under 5 minutes
π Configure Variables β Set your
{REDIRECT_DOMAIN}and{ATTACKER_DOMAIN}in the Variables tabπ Check for Updates β Check for updates regularly to ensure you have the latest features and fixes
π Updating
Burp Bounty Pro has a built-in update checker that detects new versions of both the extension and the profiles.
Check For Updates
Go to the Burp Bounty Pro tab > About sub-tab
Click the Check For Updates button
The extension will check for:
π New versions of Burp Bounty Pro β If a new version is available, you'll be notified and can download it
π¦ New versions of the profiles β Updated and new scanning profiles are downloaded and installed automatically
π‘ Tip: Check for updates regularly to get the latest vulnerability detection profiles and bug fixes.
π Note: Your existing profiles, rules, and settings are preserved across updates.
π Resources
π Documentation
π₯ Video Tutorials
π Main Website
π¦ Twitter
π§ Support
β Need Help?
If you encounter any issues during the installation or have questions about using Burp Bounty Pro, please:
π Check the FAQ for common solutions
π§ Contact our support team at [email protected]
Last updated