Skip to content

mrdzer0/burptimeline

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits
src
src
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
burptimeline.gif
burptimeline.gif
 
 
requirements.txt
requirements.txt
 
 

Repository files navigation

Burp Timeline Parser

A tool to parse Burp Suite project files (.burp) and generate a concise, interactive HTML timeline report for penetration testing. It extracts HTTP traffic, grouping it by session and identifying active hours and target hosts.

alt text

Features

  • CLI Mode: Parse .burp files directly from the command line for automation.
  • Web GUI Mode: An interactive web interface to upload files, dynamically select specific target hosts, filter by dates, and generate reports.
  • Session Tracking: Automatically groups HTTP requests into testing sessions with active hours calculation.
  • Traffic Analysis: Identifies most-tested endpoints and provides visual charts (traffic breakdown, methods, status codes).

Folder Structure

  • src/: Core application source files (main.py, burp_timeline_parser.py, generate_report.py, web_app.py, templates/).
  • tests/: Testing scripts and test data files.
  • reports/: Generated HTML reports (Ignored by git).
  • data/: .burp project files (Ignored by git).

Setup

  1. Clone the repository.
  2. Make sure you have Python 3 installed.
  3. Install dependencies from requirements.txt:
pip install -r requirements.txt

Usage

1. Web GUI (Recommended)

Start the local Flask web application:

python3 src/web_app.py

Then open http://127.0.0.1:5000 in your browser. You can upload your .burp file, select which internal/external hosts you want to include in the report, set date filters, and generate the HTML report on the fly.

2. Command Line Interface (CLI)

Run the main script and provide a Burp Suite project file as input:

python3 src/main.py path/to/project.burp

CLI Options:

  • -o, --output: Specify the output path for the HTML report (default: report.html).
  • --scope: Define regex patterns for in-scope hosts (e.g., example\.com$).
  • --start-date / --end-date: Filter traffic by a specific date range (YYYY-MM-DD).
  • --disable-sitemap: Disable generating the Sitemap & Coverage Heatmap section.

Example:

python3 src/main.py data/project.burp -o reports/pentest_report.html --scope "example\\.com"

Output

The script outputs an interactive HTML report containing:

  • Summary of traffic and active hours.
  • A grouped timeline representation of your pentest activities.
  • Visual traffic breakdown charts.

About

Burpsuite Timeline Parser

Resources

Readme
Activity

Stars

1 star

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages