Scanner
Automated testing.
Burp Scanner Overview
Burp Scanner (available in Burp Suite Professional) automatically crawls a web application and tests it for vulnerabilities such as SQL injection, XSS, and misconfigurations. It complements — never replaces — manual testing.
Crawl and Audit Phases
A scan has two phases. The crawl discovers content by following links and submitting forms to build a site map. The audit then sends crafted payloads to each discovered location to detect vulnerabilities.