110 Open source projects that are alternatives of or similar to DetectCrossOriginMessaging

The objective of this Burp Suite extension is the flexible and dynamic extraction, correlation, and structured presentation of information from the Burp Suite project as well as the flexible and dynamic on-the-fly modification of outgoing or incoming HTTP requests using Python scripts. Thus, Turbo Data Miner shall aid in gaining a better and fas…

Burp plugin to decrypt AES Encrypted traffic of mobile apps on the fly

Burp extension to passively scan for applications revealing software version numbers

Burp extension intended to compact Burp extension tabs by hijacking them to own tab.

Extension providing view with filtering capabilities for both complete and incomplete requests from all burp tools.

Burp Extender plugin that generates a sitemap of a website using Wayback Machine

Automate security tests using Burp Suite.

Burp Extension for testing authorization issues. Automated request repeating and parameter value extraction on the fly.

A Burp Suite Extension to extract interesting strings (key, secret, token, or etc.) from a webpage.

Burp Suite extension to discover apikeys/accesstokens and sensitive data from HTTP response.

Burp Extension that copies a request and builds a FFUF skeleton

CSTC is a Burp Suite extension that allows request/response modification using a GUI analogous to CyberChef

HackBar plugin for Burpsuite

Security checks pack for Burp Suite

BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite).

A Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).

Burp Suite plugin that adds additional checks to the passive scanner to reveal the origin IP(s) of Cloudflare-protected web applications.

Utilities for creating Burp Suite Extensions.

BurpSuite收集：包括不限于 Burp 文章、破解版、插件(非BApp Store)、汉化等相关教程，欢迎添砖加瓦---burpsuite-pro burpsuite-extender burpsuite cracked-version hackbar hacktools fuzzing fuzz-testing burp-plugin burp-extensions bapp-store brute-force-attacks brute-force-passwords waf sqlmap jar

Parse OpenAPI documents into Burp Suite for automating OpenAPI-based APIs security assessments (approved by PortSwigger for inclusion in their official BApp Store).

InQL - A Burp Extension for GraphQL Security Testing

Exporter is a Burp Suite extension to copy a request to the clipboard as multiple programming languages functions.

reCAPTCHA = REcognize CAPTCHA: A Burp Suite Extender that recognize CAPTCHA and use for intruder payload 自动识别图形验证码并用于burp intruder爆破模块的插件

Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the active and passive scanner by means of personalized rules through a very intuitive graphical interface.

SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibility of manual testing with many powerful evasion techniques.

A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅

Burp Suite extension to passively scan for applications revealing server error messages

Burp extension for automated handling of CSRF tokens

Burp Scanner extension to fingerprint and actively scan instances of the Adobe Experience Manager CMS. It checks the website for common misconfigurations and security holes.

PostMessage extension

Generate MS Word template-based reports with HP WebInspect / Burp Suite Pro input, own custom data and knowledge base.

common methods that used by my burp extension projects

This aims to be an simple window postMessage services provider.

👶 ~1 Kb wrapper of window.postMessage for cross-document communication.

A Cross-Domain Event Handler javascript library. Pure Vanilla JS, no dependencies.

JS Channels (Events / Commands / Reqest-Response / Courier) Mechanism

Typesafe iframe bridge for easy parent child bidirectional communication

A simple Burp extension for scanning stuffs in CTF

Easy communication between cross-origin browser tabs. Simplified "CORS"ing!

📭 A powerful, simple, promise-based postMessage library.

The main SamuraiWTF collaborative distro repo.

Manual JavaScript Linting is a Bug

浏览器tab之间通信

A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.

Burp extension to detect alias traversal via NGINX misconfiguration at scale.

A simple HTTP(S) and DNS Canary bot with Slack/Discord/MS Teams & Pushover support

Identify technologies used on websites.

Piper Burp Suite Extender plugin

Burp Suite Pro Loader & Keygen ( All version supported )

postmessage-promise is a client-server like, WebSocket like, full Promise syntax (postMessage.then etc.) supported postMessage library. 一个类 client-server 模式、类 WebSocket 模式、全 Promise 语法支持的 postMessage 库

Minimal RxJS adapter for the window.postMessage API for request-response streams and notification streams across frame windows.

Wordlist for content(directory) bruteforce discovering with Burp or dirsearch

Bypass 403 or 401 or 404

Rescope is a tool geared towards pentesters and bugbounty researchers, that aims to make life easier when defining scopes for Burp Suite and OWASP ZAP.

Burp Suite plugin that dynamically generates Google 2FA codes for use in session handling rules (approved by PortSwigger for inclusion in their official BApp Store).

clojure实现burp插件，提供clj脚本加载环境

A plugin that allows you execute python and get return to BurpSuite.

Custom scripts for the PIPER Burp extensions.

No description or website provided.

The extension of Burp Suite for Conviso Platform aims to serve as an integration between them, making the life of an analyst easier, because he can now send vulnerabilities directly from Burp to the platform.