Burp MCP Agents
Practical setup guides and helpers to connect Burp Suite MCP Server to multiple AI backends (Codex, Gemini, Ollama, ...).
What is Burp MCP Agents?
Burp MCP Agents is a Model Context Protocol (MCP) server that allows AI assistants like Claude, Cursor, and VS Code to practical setup guides and helpers to connect burp suite mcp server to multiple ai backends (codex, gemini, ollama, ...).
Practical setup guides and helpers to connect Burp Suite MCP Server to multiple AI backends (Codex, Gemini, Ollama, ...).
This server falls under the Security category on MCPgee, the world's largest MCP server directory with 33,000+ servers.
Features
- Practical setup guides and helpers to connect Burp Suite MCP
Use Cases
Maintainer
Works with
Installation
Manual Installation
npx burp-mcp-agentsConfiguration
Configuration Details
claude_desktop_config.json
Performance
Response Metrics
Resource Usage
How to Set Up and Use Burp MCP Agents
Burp MCP Agents is a collection of setup guides, helper scripts, and prompt templates that connect Burp Suite's MCP server extension to multiple AI backends including OpenAI Codex CLI, Google Gemini CLI, Ollama (local), and LM Studio (local). It bridges Burp Suite's HTTP traffic capture and analysis capabilities with AI-assisted vulnerability discovery, letting security testers use natural language to surface passive vulnerabilities, detect IDOR/BOLA patterns, map authentication flows, and generate evidence-based reports from real traffic. A Caddy reverse proxy handles the authentication and routing layer between Burp and the AI clients.
Prerequisites
- Burp Suite Professional or Community Edition installed
- Burp MCP Server extension installed from the BApp Store (PortSwigger App Store ID: 9952290f04ed4f628e624d0aa9dccebc)
- Caddy web server installed for the reverse proxy layer
- At least one AI backend: Codex CLI, Gemini CLI, Ollama, or LM Studio
- Bash shell environment (macOS/Linux); Windows Subsystem for Linux recommended on Windows
Install the Burp MCP Server extension
In Burp Suite, go to Extender → BApp Store and search for 'MCP Server', or download it directly from the BApp Store URL. After installation, verify it is listening on 127.0.0.1:9876.
Set up Caddy as the reverse proxy
Follow the instructions in common/caddy_setup.md from the burp-mcp-agents repository to configure Caddy. Caddy is required regardless of which AI backend you use — it handles routing from the AI client to the Burp MCP extension.
git clone https://github.com/six2dez/burp-mcp-agents.git
cd burp-mcp-agents
# Follow common/caddy_setup.md for Caddy configurationChoose and configure an AI backend
Select one of the supported backends. For Ollama (local, full privacy), install Ollama and pull a model. For Gemini CLI, install the Gemini CLI and authenticate. For Codex CLI, install it and set your OpenAI API key.
# Example: Ollama with llama3.1:8b
ollama pull llama3.1:8b-instruct
# Example: Gemini CLI install
npm install -g @google/gemini-cliSource the launcher script for your backend
Source the appropriate bash helper script from the repository to get convenient launch functions. Add the source line to ~/.zshrc or ~/.bashrc for persistence.
# For Ollama
source /path/to/burp-mcp-agents/ollama/burpollama.sh
# For Gemini CLI
source /path/to/burp-mcp-agents/gemini-cli/burpgemini.sh
# For Codex CLI
source /path/to/burp-mcp-agents/codex/burpcodex.shLaunch the AI session against Burp traffic
Invoke the launcher function for your chosen backend. For Ollama, optionally specify a model name.
# Ollama with default model
burpollama
# Ollama with specific model
burpollama llama3.1:70b-instruct
# Gemini CLI
burpgemini
# Codex CLI
burpcodexUse the bundled prompt templates
The repository includes eight prompt templates in the prompts/ directory covering passive vulnerability surfacing, IDOR/BOLA detection, authentication flow mapping, SSRF/redirect identification, logic flaw discovery, token scope analysis, rate-limit abuse, and evidence-based reporting. Load the relevant prompt to guide the AI's analysis.
Burp MCP Agents Examples
Client configuration
Burp MCP Agents does not use a standard MCP client config file — it connects AI backends directly to the Burp MCP extension via Caddy. The Burp MCP extension listens on 127.0.0.1:9876 and Caddy proxies AI client traffic to it.
# Burp MCP extension default address
Burp MCP Server: 127.0.0.1:9876
Caddy reverse proxy routes AI client -> Caddy -> Burp MCP
# No claude_desktop_config.json needed;
# AI backends connect via their own CLI tools through Caddy.Prompts to try
Use these prompts with any connected AI backend to analyze Burp Suite traffic for security vulnerabilities.
- "Review the HTTP traffic in Burp and surface any passive vulnerabilities you can identify."
- "Analyze the captured requests for IDOR or BOLA patterns where object IDs appear to be user-controlled."
- "Map the authentication flow from the captured traffic — what endpoints are involved in login and session management?"
- "Identify any requests that could be candidates for SSRF or open redirect exploitation."
- "Generate an evidence-based vulnerability report from the Burp traffic, citing specific request/response pairs."Troubleshooting Burp MCP Agents
Burp MCP extension is not listening on 127.0.0.1:9876
Ensure the extension loaded correctly in Burp's Extender tab and that no other process is using port 9876. Reload the extension from Extender → Extensions if needed.
Caddy fails to start or proxy requests to Burp
Check that your Caddyfile is correctly configured per common/caddy_setup.md and that Caddy has permission to bind to the configured port. Run caddy validate to check the config file syntax.
Ollama model is slow or crashes with large traffic samples
Use a smaller model (llama3.1:8b-instruct requires ~8 GB RAM) or reduce the amount of traffic sent to the AI by filtering Burp's scope. For large corpora, use a cloud backend like Gemini or Codex instead.
Frequently Asked Questions about Burp MCP Agents
What is Burp MCP Agents?
Burp MCP Agents is a Model Context Protocol (MCP) server that practical setup guides and helpers to connect burp suite mcp server to multiple ai backends (codex, gemini, ollama, ...). It connects AI assistants to external tools and data sources through a standardized interface.
How do I install Burp MCP Agents?
Follow the installation instructions on the Burp MCP Agents GitHub repository. Clone the repo, install dependencies, and add the server config to your AI client.
Which AI clients work with Burp MCP Agents?
Burp MCP Agents works with all major MCP-compatible AI clients including Claude Desktop, Claude Code, Cursor, VS Code (GitHub Copilot), Windsurf, and Cline.
Is Burp MCP Agents free to use?
Yes, Burp MCP Agents is open source and available under the MIT license. You can use it freely in both personal and commercial projects.
Burp MCP Agents Alternatives — Similar Security Servers
Looking for alternatives to Burp MCP Agents? Here are other popular security servers you can use with Claude, Cursor, and VS Code.
Casdoor
★ 13.6kAn open-source Agent-first Identity and Access Management (IAM) /LLM MCP & agent gateway and auth server with web UI supporting OpenClaw, MCP, OAuth, OIDC, SAML, CAS, LDAP, SCIM, WebAuthn, TOTP, MFA, Face ID, Google Workspace, Azure AD
ghidraMCP
★ 9.0kAn Model Context Protocol server that enables LLMs to autonomously reverse engineer applications by exposing Ghidra's decompilation and analysis tools. It allows AI agents to list code structures, rename methods, and analyze binaries directly through
HexStrike AI
★ 8.9kHexStrike AI MCP Agents is an advanced MCP server that lets AI agents (Claude, GPT, Copilot, etc.) autonomously run 150+ cybersecurity tools for automated pentesting, vulnerability discovery, bug bounty automation, and security research. Seamlessly b
IDA Pro MCP
★ 8.7kEnables AI-assisted reverse engineering in IDA Pro by providing tools to analyze binaries, decompile functions, manage comments, search patterns, and interact with the IDA database through natural language.
Anthropic Cybersecurity Skills
★ 6.6k754 structured cybersecurity skills for AI agents · Mapped to 5 frameworks: MITRE ATT&CK, NIST CSF 2.0, MITRE ATLAS, D3FEND & NIST AI RMF · agentskills.io standard · Works with Claude Code, GitHub Copilot, Codex CLI, Cursor, Gemini CLI & 20+ platform
Hooker
★ 5.1k🔥🔥 hooker is a Frida-based reverse engineering toolkit for Android. It offers a user-friendly CLI, universal scripts, auto hook generation, memory roaming to detect activities/services, one-click SOCKS5 proxy setup, Frida JustTrustMe, and BoringSSL u
Browse More Security MCP Servers
Explore all security servers available in the MCPgee directory. Each server includes setup guides for Claude, Cursor, and VS Code.
Set Up Burp MCP Agents in Your Editor
Choose your AI client for step-by-step setup instructions.
Quick Config Preview
Add this to your claude_desktop_config.json or .cursor/mcp.json
Ready to use Burp MCP Agents?
Browse our complete directory of 33,000+ MCP servers, read setup guides for your editor, and start building with the Model Context Protocol.