Visualize the directed graph of HTTP "Referer" headers. See demo video
Referer Graph is comprised of 3 parts that work together sequentially:
- Burp Suite extension
- Node.js server
- Web application
Required:
Node.js (version 14 recommended)
Java (version 11 recommended)
npm install # Install dependencies
npm run build-all # Build the web app
Download the jar from releases. Alternatively, build the jar locally.
Navigate to the burp/
directory and run:
gradle shadowJar
burp-extension-web-app-flow-visualizer-all.jar
is created in directory build/libs/
if successful.
Note: Gradle version 6.9 is recommended; the gradle build file may not work with other versions.
Use the following steps to get everything up and running:
- Run
npm start
in the base directory to start the web-app server - Import the
burp-extension-web-app-flow-visualizer-all.jar
to Burp Extender - In the "Referer Graph" tab in Burp Suite, setup the configuration to your use case
- Navigate to
http://localhost:8000
to access the visualization web-app
- Parse URL query strings
Query parameters shouldn't be treated as part of the unique URL- Some sites use non-standard query strings like Google
Make sure that Node.js and Java are allowed to make connections in your firewall settings.