Use placeholder reference

This page lists the placeholders available for scan prompts.

Placeholders let scan prompts include specific parts of the HTTP request and response being analysed. The extension replaces supported placeholders before sending the final prompt to the configured model provider.

Use placeholders in AI scanner prompt templates and prompt library entries that you send to the scanner settings.

View supported placeholders

To view the supported placeholders in Burp Suite:

Go to the BurpGPT Pro tab.
Select Placeholder reference.
Use the search field to find a placeholder by name or description.

Supported placeholders

Placeholder

Value

{REQUEST}

The full scanned request.

{URL}

The URL of the scanned request.

{METHOD}

The HTTP request method used in the scanned request.

{REQUEST_HEADERS}

The headers of the scanned request.

{REQUEST_BODY}

The body of the scanned request.

{RESPONSE}

The full scanned response.

{RESPONSE_HEADERS}

The headers of the scanned response.

{RESPONSE_BODY}

The body of the scanned response.

Example

Analyse the following HTTP exchange for security issues.

Method: {METHOD}
URL: {URL}

Request:
{REQUEST}

Response:
{RESPONSE}

Use narrower placeholders when you only need part of the traffic. For example, use {REQUEST_HEADERS} when you want the model to focus on authentication, cookies, or custom headers.

PreviousUse the prompt library NextAnalyse HTTP traffic

Last updated 29 days ago