Type Xplorer

Type Xplorer is designed to test different content types in HTTP requests. It allows users to test all possible Content-Types (such as urlencoded, JSON, XML) and visually review the responses in a user-friendly interface. This tool is particularly useful for finding vulnerabilities that involve certain restrictions, like CSRF, IDOR, and ATO. Changing the Content-Type header manually might be a tedious task, but with this extension, all checks can be performed in a single click.

Features

Send HTTP requests with a variety of content types.
View request and response details in a split-pane interface.
Easily clear entries using the delete key.
Support for multiple test cases, which include combinations of header and body formats.

Usage

Sending Requests

Right-click on a request in Burp Suite, for example in the Proxy or Repeater tab.
Select "Send to TypeXplorer" from the context menu.
The request will then be added to the extensions endpoint list.

Deleting Entries

Select an endpoint in the list.
Press the delete key to remove it from the list.

Author	Author Mohammad Khaleghdadi
Version	Version 1.0.0
Rating	Rating
Popularity	Popularity
Last updated	Last updated 18 September 2025
Estimated system impact	Estimated system impact Overall impact: Empty Memory Empty CPU Empty General Empty Scanner Empty

Author

Author

Mohammad Khaleghdadi

Version

Version

1.0.0

Rating

Rating

Popularity

Popularity

Last updated

Last updated

18 September 2025

Estimated system impact

Estimated system impact

Overall impact: Empty

Memory

Empty

CPU

Empty

General

Empty

Scanner

Empty

You can install BApps directly within Burp, via the BApp Store feature in the Burp Extender tool. You can also download them from here, for offline installation into Burp.

	You can view the source code for all BApp Store extensions on our GitHub page.
	Follow @BApp_Store on Twitter to receive notifications of all BApp releases and updates.

Please note that extensions are written by third party users of Burp, and PortSwigger Web Security makes no warranty about their quality or usefulness for any particular purpose.

Go back to BappStore

Note:

Please note that extensions are written by third party users of Burp, and PortSwigger Web Security makes no warranty about their quality or usefulness for any particular purpose.