login

Burp Suite, the leading toolkit for web application security testing

Burp Spider Documentation

Burp Spider is a tool for automatically crawling web applications. It uses various intelligent techniques to generate an inventory of an application's content and functionality.

Use the links below for help about Burp Spider:

Support Center

Get help and join the community discussions at the Burp Suite Support Center.

Visit the Support Center ›

Thursday, September 8, 2016

1.7.06

This release introduces a new scan check for second-order SQL injection vulnerabilities. In situations where Burp observes stored user input being returned in a response, Burp Scanner now performs its usual logic for detecting SQL injection, with payloads supplied at the input submission point, and evidence for a vulnerability detected at the input retrieval point.

See all release notes ›

Copyright © 2016 PortSwigger Ltd. All rights reserved.