There is an extension named EsPReSSO that is available in the BApp Store that detects the SSO protocol used by an application and classified. The protocols detected are the following:
- OpenID
- BrowserID
- SAML
- OAuth
- OpenID-Connect
- Facebook Connect
- Microsoft Account
After EsPReSSO is installed and when Burp Suite detects the use of an SSO protocol, it will be marked, and you can click on it to send it to the EsPReSSO tool to analyze what kind of protocol it is, as shown in the following screenshot:
