Which Burp Suite feature allows an analyst to exploit injection vulnerabilities found during a scan?

The feature that allows an analyst to exploit injection vulnerabilities found during a scan is the Intruder. This tool is designed to automate customized attacks against web applications. It can be used for tasks such as brute-forcing credentials, testing for input validation vulnerabilities, and exploiting injection flaws.

The Intruder allows users to define payloads, which can be extremely useful for testing how an application responds to different types of malicious input. This means that if an injection vulnerability has been detected during a scan, the Intruder can be configured to send various payloads to identify how the system behaves. By observing the responses, analysts can determine whether the injection vulnerability can be exploited effectively.

In contrast, while Sniper is more focused on targeted attacks with a single request, the Repeater is used for manually modifying and resending requests to the server, which is more suited for testing rather than exploiting vulnerabilities. The Decoder is a tool that helps in translating encoded data, but it does not directly assist with exploiting vulnerabilities. Thus, the Intruder is the feature best suited for exploiting injection vulnerabilities found during a scan.