This automates Burp Suite workflows through Claude, letting you run proxy-based security testing without manually clicking through the UI. It handles the standard pentest routine: intercepting HTTP traffic, replaying requests, running vulnerability scans, and analyzing responses. You'll still need Burp installed and configured with the proxy listener, but then you can describe what you want tested and let Claude drive. Honestly most useful if you're doing repetitive security assessments and want to script the boring parts. The skill comes from a larger template collection with 27.7K stars, though documentation is sparse on exactly which Burp operations it supports beyond the basics.
npx skills add https://github.com/davila7/claude-code-templates --skill burp-suite-web-application-testing