// MCP TOOL REFERENCE

BURP MCP PLUS TOOLS

20 tools from the Burp Mcp Plus MCP Server, categorised by risk level.

View the Burp Mcp Plus policy →
// ALL 20 BURP MCP PLUS TOOLS
READ 14 tools
Read sitemap Build a sitemap from Burp proxy history (no upstream Target tool exists). Read collaborator_check Poll Burp Collaborator for received interactions. Read dedup_get Fetch a dedup entry by its 1-based index. Read dedup_list List all registered dedup sources. Read dedup_load Load a `deduped_requests.txt` file produced by the user's Burp Read dedup_search Regex-search a registered dedup source. Read inspect_history_entry Fetch and pretty-print a Burp proxy history entry by index. Read js_files List JS files in a source, optionally filtered by host regex. Read js_list List all registered JS sources. Read js_load Load a `_manifest.csv` produced by the JS Exporter side of the user's Read js_read Read one JS file from a source. Read js_search Grep across all on-disk JS files in a source. Read list_history List recent Burp proxy history entries with their `history_index`. Read search_history Search Burp proxy history with a regex; returns a compact list of
EXECUTE 6 tools
Execute intruder_from_history intruder_from_history Execute repeater_from_history repeater_from_history Execute repeater_from_template repeater_from_template Execute collaborator_generate Generate one or more Burp Collaborator payloads. Execute dedup_to_repeater Send a dedup entry to Burp Repeater, with optional structured overrides. Execute send_request send_request

Route Burp Mcp Plus through PolicyLayer and every one of its 20 tools is checked against your policy before it runs.

CHECK YOUR STACK →

See every tool, the dangerous ones, and the token cost across your stack.

// FAQ
How many tools does the Burp Mcp Plus MCP server have? +

The Burp Mcp Plus MCP server exposes 20 tools across 2 categories: Read, Execute.

How do I enforce policies on Burp Mcp Plus tools? +

Route the Burp Mcp Plus server through the PolicyLayer gateway. Define allow, deny, or approval rules per tool in the dashboard; they are enforced on every call before it reaches the server.

What risk categories do Burp Mcp Plus tools fall into? +

Burp Mcp Plus tools are categorised as Read (14), Execute (6). Each category has a recommended default policy.

Enforce policy on every Burp Mcp Plus tool call.

Start from Burp Mcp Plus, add the rest of your stack, and see everything your agents can call. Then put policy on all of it.

CHECK YOUR STACK →

Free to start. No card required.

43,000+ MCP servers and 220,000+ tools scanned and risk-classified.

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.