Skip to content

pwnlogs/host-redirector

BranchesTags

Repository files navigation

Host Redirector: Burp Suite Extension

Host Redirector is a lightweight Burp Suite extension designed to seamlessly reroute traffic from one host to another. This is particularly useful for security researchers and developers who need to test production-level configurations against development or staging environments.

Key Features

  • Target Decoupling: Redirect request IP address and SNI (Subject Name Indication) while keeping the original Host header.
    This allows you to test backend servers directly without breaking application logic that relies on the hostname.
    This is also ideal for testing WAF bypasses, Virtual Hosting configurations, or Origin-Server direct access.
    • You can optionally toggle "Update Host Header" if the destination requires it.
  • Granular Routing: Redirect requests selectively based on request path. Match with regex.
  • HTTP/1.1 & HTTP/2 Support
  • Transparent Proxying: Works across all Burp tools (Proxy, Repeater, Intruder, etc.).
    You can also choose to enable/disable specific tools.
  • Configurable UI: Manage multiple redirection rules through a dedicated tab in the Burp Suite UI.
  • Dynamic Redirection: Map any source hostname to a destination hostname.

How It Works

Just before a request is sent out by Burp Suite, the extension checks the destination host against your configured rules. If a match is found, the extension:

  1. Changes the destination IP/domain of the socket.
  2. Uses the new hostname as SNI (Subject Name Indicator) during TLS handshake.
  3. Rewrites the HTTP Host header to match the new destination (if opted).
    This is a 'find & replace' logic on the Host header value. Hence, your port number and any other payload you have on the Host header stays intact!

Installation

Simply download the extension, load it on your Burp Suite and enjoy!

Compare With Other Methods

There are several other methods for changing the host of the request. Different methods are compared below:

  • Find & Replace Host Header:
    You could use the native Match and Replace feature in Burp Suite to change the hostname.
Which hostname will the server see?
HTTP (Host Header) ✅ New Hostname
TLS (SNI) ❌ Original Hostname
TCP (IP Address) ❌ Original IP Address
  • Change Hostname Resolution:
    Another method is to change hostname resolution by editing /etc/hosts file.
    This can also be done by Hostname resolution overrides feature in Burp Suite.
Which hostname will the server see?
HTTP (Host Header) ❌ Original Hostname
TLS (SNI) ❌ Original Hostname
TCP (IP Address) ✅ New IP Address
  • Using Host Redirector
Which hostname will the server see?
HTTP (Host Header) ✅ New Hostname (Optional)
TLS (SNI) ✅ New Hostname
TCP (IP Address) ✅ New IP Address

Example Use Case

If you want to test how your production session cookies behave on a QA environment:

  1. Add prod.app.com as the Source.
  2. Add qa.app.com as the Destination.
  3. Browse https://prod.app.com in your Burp-configured browser.
  4. Burp will automatically fetch data from qa.app.com while your browser still thinks it is communicating with production.

screenshot.jpg

About

A Burp Suite extension to re-route requests. For example, route prod.foo.com to dev.foo.com

Resources

Readme
Activity

Stars

1 star

Watchers

0 watching

Forks

0 forks
Report repository

Releases 2

Host Redirector v1.1 – The Granularity Update Latest
Jan 30, 2026
+ 1 release

Packages

 
 
 

Contributors

Languages