78 Open source projects that are alternatives of or similar to Burp Fofa

|| Activate Burp Suite Pro with Loader and Key-Generator ||

Manual JavaScript Linting is a Bug

🔰渗透测试资源库🔰黑客工具🔰维基解密文件🔰木马免杀🔰信息安全🔰技能树🔰数据库泄露🔰

Complete Listing and Usage of Tools used for Ethical Hacking

Utilities for creating Burp Suite Extensions.

Automated HTTP Request Repeating With Burp Suite

OWASP VulnerableApp Project: For Security Enthusiasts by Security Enthusiasts.

burpsuite extension for check and extract sensitive request parameter

Jasmin Ransomware is an advanced red team tool (WannaCry Clone) used for simulating real ransomware attacks. Jasmin helps security researchers to overcome the risk of external attacks.

HaE - BurpSuite Highlighter and Extractor

Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"

Burp extension for automated handling of CSRF tokens

Powerful plugins and add-ons for hackers

Commodity Injection Signatures, Malicious Inputs, XSS, HTTP Header Injection, XXE, RCE, Javascript, XSLT

Burp Suite extension to passively scan for applications revealing server error messages

This Burp extension helps you to find usages of postMessage and recvMessage

Extension for Burp Suite which uses AWS API Gateway to rotate your IP on every request.

Extension providing view with filtering capabilities for both complete and incomplete requests from all burp tools.

Burp Bounty profiles compilation, feel free to contribute!

The extension of Burp Suite for Conviso Platform aims to serve as an integration between them, making the life of an analyst easier, because he can now send vulnerabilities directly from Burp to the platform.

Burp-Automator: A Burp Suite Automation Tool with Slack Integration. It can be used with Jenkins and Selenium to automate Dynamic Application Security Testing (DAST).

The objective of this Burp Suite extension is the flexible and dynamic extraction, correlation, and structured presentation of information from the Burp Suite project as well as the flexible and dynamic on-the-fly modification of outgoing or incoming HTTP requests using Python scripts. Thus, Turbo Data Miner shall aid in gaining a better and fas…

burpsuite extension for extract information from data

Custom scripts for the PIPER Burp extensions.

myscan 被动扫描

这是基于Burp Suite官方文档翻译而来的中文版文档

Vaf is a cross-platform very advanced and fast web fuzzer written in nim

A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅

百宝箱

Burp Pro as a Docker Container

Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.

reCAPTCHA = REcognize CAPTCHA: A Burp Suite Extender that recognize CAPTCHA and use for intruder payload 自动识别图形验证码并用于burp intruder爆破模块的插件

A Burp plugin that collects Burp request parameters, directories, paths and file names into the database for sorting

An extensible application for penetration testers and software developers to decode/encode data into various formats.

Burp Extension for testing authorization issues. Automated request repeating and parameter value extraction on the fly.

A Burp Suite extension to help pentesters to bypass WAFs or test their effectiveness using a number of techniques

CaA - BurpSuite Collector and Analyzer

Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the active and passive scanner by means of personalized rules through a very intuitive graphical interface.

Burp Suite Pro Loader & Keygen ( All version supported )

Burp Suite extension to discover apikeys/accesstokens and sensitive data from HTTP response.

Burp Commander written in Go

Parse OpenAPI documents into Burp Suite for automating OpenAPI-based APIs security assessments (approved by PortSwigger for inclusion in their official BApp Store).

Burp Suite plugin that dynamically generates Google 2FA codes for use in session handling rules (approved by PortSwigger for inclusion in their official BApp Store).

Burp plugin to decrypt AES Encrypted traffic of mobile apps on the fly

SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibility of manual testing with many powerful evasion techniques.

Burp extension to passively scan for applications revealing software version numbers

Burp Extension that copies a request and builds a FFUF skeleton

Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease application security people work and allow them perform an automatic authorization tests

Burp Suite plugin that adds additional checks to the passive scanner to reveal the origin IP(s) of Cloudflare-protected web applications.

Bypass 403 or 401 or 404

Burpsuite-Plugins-Usage

Web Penetration Testing with Kali Linux - Third Edition, published by Packt

HackBar plugin for Burpsuite

intercepting kali router

burpsuite extension for check unauthorized vulnerability

CSTC is a Burp Suite extension that allows request/response modification using a GUI analogous to CyberChef

BurpSuite收集：包括不限于 Burp 文章、破解版、插件(非BApp Store)、汉化等相关教程，欢迎添砖加瓦---burpsuite-pro burpsuite-extender burpsuite cracked-version hackbar hacktools fuzzing fuzz-testing burp-plugin burp-extensions bapp-store brute-force-attacks brute-force-passwords waf sqlmap jar

InQL - A Burp Extension for GraphQL Security Testing

BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite).