BurpGPT seamlessly incorporates GPT (Generative Pre-trained Transformer) models through the OpenAI API, providing a versatile solution for a wide range of security testing scenarios with its adaptable prompt feature. The capabilities include (but are not limited to):

• Customisable prompts offer boundless traffic analysis possibilities tailored to specific requirements, such as:
  • Creating unique payloads.
  • Supporting vulnerability detection.
  • Automating extensive HTTP traffic analysis.
• OpenAI results are presented as Informational level issues, facilitating efficient large-scale post-processing.
• An intuitive interface for configuring API keys, models, and prompt settings simplifies the security testing process and enhances overall effectiveness.
• The Event Log's error handling facilitates seamless resolution of communication problems with the OpenAI API, including incorrect API keys or issues related to usage limits and billing.

After installing the BurpGPT extension, click on the 'BurpGPT' menu item. Input your OpenAI API key, choose the GPT model, and modify the prompt as desired. Once the settings are in place, click the 'Apply' button to save your changes. From then on, each request sent to the passive scanner will also be assessed by OpenAI according to the user-defined prompt, with the results displayed as an Information level issue.

For further details and examples of using BurpGPT, please visit the repository at: https://github.com/aress31/burpgpt.