TurboDataMinerThe objective of this Burp Suite extension is the flexible and dynamic extraction, correlation, and structured presentation of information from the Burp Suite project as well as the flexible and dynamic on-the-fly modification of outgoing or incoming HTTP requests using Python scripts. Thus, Turbo Data Miner shall aid in gaining a better and fas…
Stars: ✭ 46 (+283.33%)
Aes KillerBurp plugin to decrypt AES Encrypted traffic of mobile apps on the fly
Stars: ✭ 446 (+3616.67%)
burp-wildcardBurp extension intended to compact Burp extension tabs by hijacking them to own tab.
Stars: ✭ 119 (+891.67%)
burp-flowExtension providing view with filtering capabilities for both complete and incomplete requests from all burp tools.
Stars: ✭ 45 (+275%)
PwnbackBurp Extender plugin that generates a sitemap of a website using Wayback Machine
Stars: ✭ 203 (+1591.67%)
Headless BurpAutomate security tests using Burp Suite.
Stars: ✭ 192 (+1500%)
auth analyzerBurp Extension for testing authorization issues. Automated request repeating and parameter value extraction on the fly.
Stars: ✭ 77 (+541.67%)
Burpsuite XkeysA Burp Suite Extension to extract interesting strings (key, secret, token, or etc.) from a webpage.
Stars: ✭ 144 (+1100%)
Burpsuite Secret finderBurp Suite extension to discover apikeys/accesstokens and sensitive data from HTTP response.
Stars: ✭ 483 (+3925%)
burp-copy-as-ffufBurp Extension that copies a request and builds a FFUF skeleton
Stars: ✭ 77 (+541.67%)
CstcCSTC is a Burp Suite extension that allows request/response modification using a GUI analogous to CyberChef
Stars: ✭ 91 (+658.33%)
HackbarHackBar plugin for Burpsuite
Stars: ✭ 917 (+7541.67%)
BurpcryptoBurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite).
Stars: ✭ 350 (+2816.67%)
MinesweeperA Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).
Stars: ✭ 162 (+1250%)
flarequenchBurp Suite plugin that adds additional checks to the passive scanner to reveal the origin IP(s) of Cloudflare-protected web applications.
Stars: ✭ 44 (+266.67%)
burp-suite-utilsUtilities for creating Burp Suite Extensions.
Stars: ✭ 19 (+58.33%)
Burpsuite CollectionsBurpSuite收集:包括不限于 Burp 文章、破解版、插件(非BApp Store)、汉化等相关教程,欢迎添砖加瓦---burpsuite-pro burpsuite-extender burpsuite cracked-version hackbar hacktools fuzzing fuzz-testing burp-plugin burp-extensions bapp-store brute-force-attacks brute-force-passwords waf sqlmap jar
Stars: ✭ 1,081 (+8908.33%)
SwurgParse OpenAPI documents into Burp Suite for automating OpenAPI-based APIs security assessments (approved by PortSwigger for inclusion in their official BApp Store).
Stars: ✭ 94 (+683.33%)
InqlInQL - A Burp Extension for GraphQL Security Testing
Stars: ✭ 715 (+5858.33%)
Burp ExporterExporter is a Burp Suite extension to copy a request to the clipboard as multiple programming languages functions.
Stars: ✭ 122 (+916.67%)
RecaptchareCAPTCHA = REcognize CAPTCHA: A Burp Suite Extender that recognize CAPTCHA and use for intruder payload 自动识别图形验证码并用于burp intruder爆破模块的插件
Stars: ✭ 596 (+4866.67%)
BurpbountyBurp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the active and passive scanner by means of personalized rules through a very intuitive graphical interface.
Stars: ✭ 1,026 (+8450%)
SQLi-Query-TamperingSQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibility of manual testing with many powerful evasion techniques.
Stars: ✭ 123 (+925%)
KnifeA burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅
Stars: ✭ 626 (+5116.67%)
burp-aem-scannerBurp Scanner extension to fingerprint and actively scan instances of the Adobe Experience Manager CMS. It checks the website for common misconfigurations and security holes.
Stars: ✭ 60 (+400%)
messpostagePostMessage extension
Stars: ✭ 74 (+516.67%)
report-ngGenerate MS Word template-based reports with HP WebInspect / Burp Suite Pro input, own custom data and knowledge base.
Stars: ✭ 62 (+416.67%)
burp-api-commoncommon methods that used by my burp extension projects
Stars: ✭ 29 (+141.67%)
post-messenger👶 ~1 Kb wrapper of window.postMessage for cross-document communication.
Stars: ✭ 28 (+133.33%)
PostEventA Cross-Domain Event Handler javascript library. Pure Vanilla JS, no dependencies.
Stars: ✭ 14 (+16.67%)
chronosjsJS Channels (Events / Commands / Reqest-Response / Courier) Mechanism
Stars: ✭ 35 (+191.67%)
ibridgeTypesafe iframe bridge for easy parent child bidirectional communication
Stars: ✭ 25 (+108.33%)
CTFHelperA simple Burp extension for scanning stuffs in CTF
Stars: ✭ 29 (+141.67%)
Across TabsEasy communication between cross-origin browser tabs. Simplified "CORS"ing!
Stars: ✭ 1,575 (+13025%)
Postmate📭 A powerful, simple, promise-based postMessage library.
Stars: ✭ 1,638 (+13550%)
SamuraiwtfThe main SamuraiWTF collaborative distro repo.
Stars: ✭ 243 (+1925%)
eslinterManual JavaScript Linting is a Bug
Stars: ✭ 47 (+291.67%)
IntruderpayloadsA collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.
Stars: ✭ 2,779 (+23058.33%)
Off By SlashBurp extension to detect alias traversal via NGINX misconfiguration at scale.
Stars: ✭ 192 (+1500%)
KnaryA simple HTTP(S) and DNS Canary bot with Slack/Discord/MS Teams & Pushover support
Stars: ✭ 187 (+1458.33%)
WebtechIdentify technologies used on websites.
Stars: ✭ 178 (+1383.33%)
burp-piperPiper Burp Suite Extender plugin
Stars: ✭ 85 (+608.33%)
BurpLoaderKeygenBurp Suite Pro Loader & Keygen ( All version supported )
Stars: ✭ 750 (+6150%)
postmessagejspostmessage-promise is a client-server like, WebSocket like, full Promise syntax (postMessage.then etc.) supported postMessage library. 一个类 client-server 模式、类 WebSocket 模式、全 Promise 语法支持的 postMessage 库
Stars: ✭ 33 (+175%)
rx-postmessengerMinimal RxJS adapter for the window.postMessage API for request-response streams and notification streams across frame windows.
Stars: ✭ 27 (+125%)
BypassSuperBypass 403 or 401 or 404
Stars: ✭ 81 (+575%)
RescopeRescope is a tool geared towards pentesters and bugbounty researchers, that aims to make life easier when defining scopes for Burp Suite and OWASP ZAP.
Stars: ✭ 156 (+1200%)
googleauthenticatorBurp Suite plugin that dynamically generates Google 2FA codes for use in session handling rules (approved by PortSwigger for inclusion in their official BApp Store).
Stars: ✭ 18 (+50%)
burp-cljclojure实现burp插件,提供clj脚本加载环境
Stars: ✭ 28 (+133.33%)
BurpyA plugin that allows you execute python and get return to BurpSuite.
Stars: ✭ 155 (+1191.67%)
HuntNo description or website provided.
Stars: ✭ 1,681 (+13908.33%)
Burp-AppSecFlowThe extension of Burp Suite for Conviso Platform aims to serve as an integration between them, making the life of an analyst easier, because he can now send vulnerabilities directly from Burp to the platform.
Stars: ✭ 36 (+200%)