Skip to content

putsi/privatecollaborator

Repository files navigation

Burp Suite - Private collaborator server

A script for installing private Burp Collaborator with Let's Encrypt SSL-certificate. Requires an Ubuntu virtual machine and public IP-address.

Works for example with Ubuntu 18.04/20.04/22.10 virtual machine and with following platforms:

  • Amazon AWS EC2 VM (with or without Elastic IP).
  • DigitalOcean VM (with or without Floating IP).

Please see the below blog post for usage instructions:

https://teamrot.fi/self-hosted-burp-collaborator-with-custom-domain/

TL;DR:

  1. Clone this repository.
  2. Install Burp to /usr/local/BurpSuitePro.
  3. Run sudo ./install.sh yourdomain.fi your@email.fi (the email is for Let's Encrypt expiry notifications).
  4. You should now have Let's encrypt certificate for the domain and a private burp collaborator properly set up.
  5. Start the collaborator with sudo service burpcollaborator start.
  6. Configure your Burp Suite Professional to use it.
  7. ????
  8. Profit.

Important note:

As stated in the blog post, be sure to firewall the ports 9443 and 9090 properly to allow connections only from your own Burp Suite computer IP address. Otherwise everyone in the internet can use your collaborator server!