A lightweight Burp Suite extension that automatically highlights HTTP traffic to make sensitive findings stand out.
Auto Highlighter is a Burp Suite extension designed for security researchers and penetration testers.
It automatically highlights requests and responses containing sensitive keywords such as password, token, apikey, secret, admin, and more.
This reduces manual searching effort and helps you quickly spot potential vulnerabilities.
- 🎨 Automatic Highlighting – Sensitive keywords are highlighted in HTTP traffic.
- ⚡ Lightweight & Fast – Minimal overhead, runs seamlessly inside Burp Suite.
- 🛠️ Customizable Rules – Extend or modify keyword patterns in code.
- 📋 Auto Notes – Adds notes to matched responses for quick reference.
-
Download the latest release JAR from the Releases page.
-
In Burp Suite:
- Navigate to Extender → Extensions → Add
- Select the downloaded
.jarfile - Click Next to load the extension
-
Done ✅ — Auto Highlighter is now active.
AutoHighlighter/
├── src/ # Source code
│ └── main/java/... # Java classes (Burp Extender implementation)
├── pom.xml # Maven build configuration
├── target/ # Compiled JAR files
├── README.md # Documentation
└── LICENSE # Open-source license
Example:
To build from source:
git clone https://github.com/jagdishtripathy/AutoHighlighter.git
cd AutoHighlighter
mvn clean packageThe compiled JAR will be available in:
target/AutoHighlighter-1.1.jar
This project is licensed under the MIT License – see the LICENSE file for details.
Contributions are welcome! If you’d like to improve Auto Highlighter:
- Fork the repo
- Create a feature branch (
git checkout -b feature/new-feature) - Commit your changes (
git commit -m "Add new feature") - Push to your fork and open a Pull Request
- 🔗 Burp Suite BApp Store (once approved)
- 📂 Releases
Made with ❤️ for the Security Community