silentchainai

silentchainai / SILENTCHAIN

Public

AI-powered vulnerability scanner extension for Burp Suite with multi-provider support (Ollama, OpenAI, Claude, Gemini)

silentchain.ai ai appsec artificial-intelligence bug-bounty burp-extension
164
51
100% credibility
Found Feb 12, 2026 at 23 stars 7x -- GitGems finds repos before they trend. Get early access to the next one.
Sign Up Free
AI Analysis
Python
AI Summary

A Burp Suite extension that uses AI for real-time passive analysis of web traffic to detect common security vulnerabilities like OWASP Top 10 issues.

How It Works

1
🔍 Discover SILENTCHAIN

While using your web security testing tool, you find this smart AI scanner in the built-in extensions shop.

2
⬇️ Install easily

Click to add it right inside your testing tool, and it sets up in seconds.

3
🧠 Connect a thinking helper

Pick a free local brain or link to a smart online service so it can understand dangers.

4
🎯 Choose sites to watch

Mark the websites or pages you want to check for safety issues.

5
🌐 Browse and scan quietly

As you visit pages through the tool, it watches traffic in the background and spots problems instantly.

6
📊 Review colorful alerts

Open the panel to see easy-to-read reports with problem levels, explanations, and fix ideas.

🛡️ Make your site safer

With clear guidance on vulnerabilities, you confidently fix issues and protect your website.

Sign up to see the full architecture

5 more

Sign Up Free

Star Growth

See how this repo grew from 23 to 164 stars Sign Up Free
Repurpose This Repo

Repurpose is a Pro feature

Generate ready-to-use prompts for X threads, LinkedIn posts, blog posts, YouTube scripts, and more -- with full repo context baked in.

Unlock Repurpose
AI-Generated Review

What is SILENTCHAIN?

SILENTCHAIN is a Python Burp Suite extension that runs AI-powered vulnerability scanning on proxied HTTP traffic, spotting OWASP Top 10 issues like SQL injection, XSS, and misconfigurations in real time. It hooks into Burp's proxy for passive analysis using models from Ollama, OpenAI, Claude, or Gemini, delivering findings with severity ratings, CWE mappings, and remediation tips right in Burp's UI. Developers get an ai powered vulnerability scanner that cuts through noise without active poking, perfect for early threat detection during testing.

Why is it gaining traction?

It stands out with multi-provider flexibility—run it locally via Ollama for free privacy, or tap cloud AIs—plus a clean dashboard tracking tasks, stats, and findings with confidence scores to minimize false positives. Right-click context menus force re-analysis on any request, and it skips static files like JS/CSS automatically. Among ai powered vulnerability detection tools on GitHub, its Burp-native integration and pro reporting hook pentesters tired of signature-based scanners.

Who should use this?

Burp Suite users doing web app pentests, especially those in recon phases scanning live traffic for injections or auth flaws. Security engineers validating apps via proxy without disrupting flows, or red teamers needing quick OWASP Top 10 sweeps. Avoid if you need active exploitation—that's pro-only.

Verdict

Grab the community edition for passive ai powered vulnerability scanning if you're in Burp daily; docs are solid and setup is straightforward despite 18 stars and 1.0% credibility score signaling early maturity. Test with Ollama first, but expect tweaks as it evolves beyond passive mode.

(198 words)

Sign up to read the full AI review Sign Up Free

Similar repos coming soon.