ProfessionalCommunity Edition

Custom scan checks

Last updated: September 11, 2025
Read time: 1 Minute

Custom scan checks enable you to extend Burp Scanner with your own vulnerability detection logic. Use them to tailor scans to meet your testing requirements and react quickly to new vulnerabilities.

You can store checks in your custom scan checks library and reuse them across scans and projects.

There are two ways to add custom scan checks to your library:

Import checks - Import existing checks shared by others or downloaded from our Bambda scripts repository or BChecks repository.
Create checks - Write your own checks in Java or our custom BChecks language to target issues specific to your application. We provide templates to help you get started, and the built-in editor helps you troubleshoot and test your code.

To learn how to add custom scan checks to your web application or API-only scans, see Adding custom scan checks to scans.

In this section

Importing custom scan checks into your library
Creating custom scan checks
Managing custom scan checks in your library
Testing custom scan checks