Quick Start

This walkthrough gets from installation to first AI analysis quickly.

1. Enable MCP (Optional but Recommended)

Click MCP toggle in the top bar of the AI Agent tab.
Verify indicator turns active.

2. Select Agent Profile (Recommended)

Bundled profiles are installed automatically into ~/.burp-ai-agent/AGENTS/.

To add custom profiles, place *.md files in that directory and refresh profiles in AI Backend settings.

3. Configure AI Backend

Open AI Backend tab in Settings.
Choose backend.
Set CLI command or HTTP URL/model fields.

If using cloud CLIs, required credentials must exist in the runtime environment where Burp is launched. GUI launchers often do not inherit shell env vars.

For backend-specific values, see Backends Overview.

4. Analyze a Request

Go to Proxy -> HTTP History.
Right-click a request.
Select Extensions -> Burp AI Agent -> Find vulnerabilities.

5. Review Response

A new chat session opens and streams AI analysis.

6. Enable Background Scanning (Advanced)

Toggle Passive ON in top bar.
Browse target traffic.
Review findings in passive scanner view and Burp issues.

Passive scanner toggle enabled in top bar

Next Steps

PreviousInstallation NextFirst Run Checklist

Last updated 16 days ago

Good afternoon

hashtag1. Enable MCP (Optional but Recommended)

hashtag2. Select Agent Profile (Recommended)

hashtag3. Configure AI Backend

hashtag4. Analyze a Request

hashtag5. Review Response

hashtag6. Enable Background Scanning (Advanced)

hashtagNext Steps

1. Enable MCP (Optional but Recommended)

2. Select Agent Profile (Recommended)

3. Configure AI Backend

4. Analyze a Request

5. Review Response

6. Enable Background Scanning (Advanced)

Next Steps