Burp Collaborator provides custom implementations of various network services on a single server. The server listens for requests that are induced by Collaborator payloads.
The server has the following functionality:
You can choose to use a private or public Collaborator server. The public server is enabled by default.
You can also configure Burp to not use a Collaborator server. With this option, none of the Collaborator capabilities are available. To do this:
You can use the server provided by PortSwigger, which is shared between all users. The server is already configured - you can simply start testing.
If the public Collaborator server suffers from a service outage or degradation, then the efficacy of Collaborator-related functionality within Burp may be impaired. For this reason, PortSwigger makes no warranty about the availability or performance of this server.
You can choose to run your own instance of the Collaborator server. This requires you to configure the server, but gives you total ownership of your data.
This is likely to appeal to penetration testing firms and in-house security teams. It's also necessary when working on a closed network with no internet access.
For information on how to set up a private Collaborator server, see Deploying a private Burp Collaborator server.