Unlock enhanced API scanning with Burp Suite Enterprise Edition  –  Learn more

Enterprise Edition

Using custom scan configurations

  • Last updated: July 16, 2024

  • Read time: 2 Minutes

In addition to the Burp Suite Enterprise Edition preset scan modes, you can create and import custom configurations. This section explains how to create and assign custom configurations to a site.

Note

We recommend keeping a consistent scan configuration for each site you add. Changing the scan configuration can affect vulnerability trends over time and cause Burp Suite Enterprise Edition to give inaccurate time estimates while scanning.

If you want to scan a site you have already added with a new configuration, we recommend adding the site again with the new configuration selected.

Assign a custom scan configuration to a site

To select a custom scan configuration for a pre-existing site:

  1. From the top menu, select Sites.
  2. Select the site from the list.
  3. Select the Details tab and click Edit.
  4. Under Scan settings, select the Scan configuration tab.
  5. To display a list of scan configurations that are currently assigned to the site, select Use a custom configuration.
  6. To add a scan configuration to your site, you have two choices:

    • Select a configuration from the drop-down box to add it to the list.
    • To create a new custom scan configuration, click Create custom configuration.

Create a custom scan configuration

To create a custom scan configuration:

  1. From the settings menu , select Scan configurations.
  2. On the Scan configuration page, click New configuration.
  3. Add a name for the configuration:

    • Click the New Scan Configuration title bar.
    • Enter a name.
    • Click Apply.
  4. Expand each scan configuration menu and change the settings as required.
  5. When you're happy with your changes, click Save.

You can now select your new scan configuration from the configuration library when you create a new site.

Exporting scan configurations

You can export your scan configurations from Burp Suite Enterprise Edition or Burp Suite Professional. This enables you to:

  • Share your scan configurations with other users in your organization.
  • Share scan configurations between Burp Suite Enterprise Edition and Burp Suite Professional.
  • Use your scan configuration in a CI-driven scan.

To export a scan configuration from Burp Suite Enterprise Edition:

  1. From the settings menu , select Scan configurations.
  2. To download your chosen scan configuration, click the download icon in the right-hand column.

Related pages

For more information on exporting configuration files from the desktop editions for Burp, see the Configuration library page.

Importing scan configurations

You can import scan configurations from other installations of Burp Suite Enterprise Edition, or Burp Suite Professional.

To import a scan configuration:

  1. Export the scan configurations from Burp Suite Enterprise Edition, or Burp Suite Professional.
  2. From the settings menu , select Scan configurations.
  3. Click Import to display the open file dialog.
  4. Select the configuration file that you want to import.

Was this article helpful?