smackerdodi

smackerdodi / copy-auth-header

Public

This Burp plugin allow copy all authentication headers by one click

10
0
100% credibility
Found Mar 24, 2026 at 10 stars -- GitGems finds repos before they trend. Get early access to the next one.
Sign Up Free
AI Analysis
Python
AI Summary

A Burp Suite extension that adds a right-click option to copy common authentication headers from HTTP requests to the clipboard for reuse in security testing.

How It Works

1
🕵️ Discover a handy shortcut

While checking websites for security weak spots by switching between test accounts, you find this simple helper tool.

2
đź“Ą Grab the helper file

Download the single file from the collection of tools.

3
🔧 Add to your testing toolkit

Open your web testing program, go to the add-ons area, and load the file so it's ready to use.

4
✨ Copy login details with one click

Right-click on a captured web request from the first test account and select the option to grab all the login information—it copies straight to your clipboard.

5
đź“‹ Paste into the next request

Switch to a request from the second test account, highlight the login spot, and paste in the copied details.

🎉 Test for security flaws easily

Now you can quickly check if the website mixes up accounts and reveals private info—saving tons of time!

Sign up to see the full architecture

4 more

Sign Up Free

Star Growth

See how this repo grew from 10 to 10 stars Sign Up Free
Repurpose This Repo

Repurpose is a Pro feature

Generate ready-to-use prompts for X threads, LinkedIn posts, blog posts, YouTube scripts, and more -- with full repo context baked in.

Unlock Repurpose
AI-Generated Review

What is copy-auth-header?

This Python-based Burp Suite plugin lets you copy common authentication headers—like Cookie, X-API-Key, X-Auth-Key, and Authorization—with a single right-click on any request. It grabs those headers from your current request and dumps them to the clipboard, solving the tedious copy-paste grind when testing IDOR vulnerabilities across accounts. Install via Burp's Extensions tab with Jython, and you're set for repeater workflows in Burp Suite Community Edition or Pro.

Why is it gaining traction?

In a sea of burp plugins on GitHub, this github burp extension stands out for its laser focus on pentesting pain points, like quickly porting auth from account A to B without manual editing. You can tweak the header list yourself, making it flexible for custom setups in burp bounty github hunts or burp plugin development flows. The one-click clipboard action beats scrolling through raw HTTP, hooking devs who value speed over bells like burp ai plugin or burp scanner github extras.

Who should use this?

Pentesters chasing IDOR bugs in web apps, bug bounty hunters grinding auth swaps in Burp Repeater, or security researchers juggling multi-account tests. It's ideal for anyone deep in Burp Suite plugin Firefox or Chrome sessions, especially if you're on github burp suite community edition and hate repetitive header hunting. Skip if you're not in active vuln hunting.

Verdict

Grab it if IDOR testing is your daily driver—10 stars and 1.0% credibility score scream early-stage, with basic docs but no tests, so test in a sandbox first. Solid niche win for plugin burp suite users, but watch for updates as it matures.

(178 words)

Sign up to read the full AI review Sign Up Free

Similar repos coming soon.