better together logoWEBINAR
See how to scale without duplicating effortWhen DAST and manual testing run on different engines, trust breaks. See how to scale without duplicating effort.REGISTER NOW
Portswigger Logo
Burp Suite DASTThe enterprise-enabled dynamic web vulnerability scanner.
Burp Suite ProfessionalThe world's #1 web penetration testing toolkit.
Burp Suite Community EditionThe best manual tools to start web security testing.
View all product editions
Burp ScannerBurp Suite's web vulnerability scannerFeatured Article
Attack surface visibilityImprove security posture, prioritize manual testing, free up time.
CI-driven scanningMore proactive security - find and fix vulnerabilities earlier.
Application security testingSee how our software enables the world to secure the web.
DevSecOpsCatch critical bugs; ship more secure software, more quickly.
Penetration testingAccelerate penetration testing - find more bugs, more quickly.
Automated scanningScale dynamic scanning. Reduce risk. Save time/money.
Bug bounty huntingLevel up your hacking and earn more bug bounties.
ComplianceEnhance security monitoring to comply with confidence.
View all solutions
Burp ScannerBurp Suite's web vulnerability scannerFeatured Article
ResearchAcademy
Support CenterGet help and advice from our experts on all things Burp.
DocumentationTutorials and guides for Burp Suite.
Get Started - ProfessionalGet started with Burp Suite Professional.
Get Started - EnterpriseGet started with Burp Suite Enterprise Edition.
User ForumGet your questions answered in the User Forum.
DownloadsDownload the latest version of Burp Suite.
Visit the Support Center
DownloadsDownload the latest version of Burp SuiteFeatured Article
Product OverviewFeaturesWorkflowBurp AIBurp ScannerCustomer StoriesRequest a TrialBuy
Get certified
Product Overview
Features
Workflow
Burp AI
Burp Scanner
Customer Stories
Request a Trial
Buy
Get certified
Get certified
How to prepare
How it works
Practice exam
What the exam involves
FAQs
Burp Suite Professional

BChecks

Customize your scanning by incorporating community-created scan checks from the BChecks library, or write your own with an easy-to-learn, purpose-built language.
Portswigger Culture Hero Image
image
"The BChecks from Burp are truly remarkable. They have allowed me to automate a significant portion of my personal checks with ease and convenience. The integration with live tasks makes them super efficient. Exceptional job, PortSwigger!"Oli (C.. 1..P.H.Y), Researcher and Pentester

What are BChecks?

BChecks offer a powerful and efficient way to customize scan checks for Burp Scanner. Either download from the BChecks library or create them using a simple and easy-to-learn, domain-specific language.
Use a BCheck to respond quickly to newly identified threats by creating and running a highly specific scan check to detect a particular CVE.
Explore the growing library of community-created BChecks to see how others are enhancing their security testing workflows.

Where can I access BChecks?

BChecks are available in both Burp Suite Professional and Burp Suite Enterprise Edition. Write your own custom BChecks - tailored specifically to your own application - in Burp Suite Professional, or select a community-made BCheck from the BCheck library, and import them directly into Burp Suite Enterprise Edition.

Burp Suite Professional

Burp Suite Enterprise Edition