Burp Suite Plugins

Software Version Checks - Passively scans for server version numbers

Error Message Checks - Passively scans for detailed error messages

GWT Scan - Parses GWT requests to identify insertion points for Scanner and Intruder

Session Timeout Test - Determines how long a session lasts on the server

Encode Authorization Header - Base-64 encodes the Authorization header


Beta Plugins

DOM-XSS Scanner Checks - Passively scans for DOM-Based Cross-Site Scripting

Rush'N Attack - Speeds up attacks by removing no-cache headers from static resources