90 Open source projects that are alternatives of or similar to VulnerableApp

No description or website provided.

Web Penetration Testing with Kali Linux - Third Edition, published by Packt

Wordlist for content(directory) bruteforce discovering with Burp or dirsearch

基于BurpSuite的一款FOFA Pro 插件

Automate security tests using Burp Suite.

Mixeway is security orchestrator for vulnerability scanners which enable easy plug in integration with CICD pipelines. MixewayHub project contain one click docker-compose file which configure and run images from docker hub.

A Burp Suite Extension to extract interesting strings (key, secret, token, or etc.) from a webpage.

Jasmin Ransomware is an advanced red team tool (WannaCry Clone) used for simulating real ransomware attacks. Jasmin helps security researchers to overcome the risk of external attacks.

Generate MS Word template-based reports with HP WebInspect / Burp Suite Pro input, own custom data and knowledge base.

An extensible application for penetration testers and software developers to decode/encode data into various formats.

Burp Pro as a Docker Container

A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.

Bypass 403 or 401 or 404

A simple HTTP(S) and DNS Canary bot with Slack/Discord/MS Teams & Pushover support

The extension of Burp Suite for Conviso Platform aims to serve as an integration between them, making the life of an analyst easier, because he can now send vulnerabilities directly from Burp to the platform.

Rescope is a tool geared towards pentesters and bugbounty researchers, that aims to make life easier when defining scopes for Burp Suite and OWASP ZAP.

Wingkalabs (Linux) Wingkalabs es una máquina Virtual Linux intencionalmente vulnerable. Esta máquina virtual se puede utilizar para realizar entrenamientos de seguridad, probar herramientas de seguridad y practicar técnicas comunes de pruebas de penetración.

Exporter is a Burp Suite extension to copy a request to the clipboard as multiple programming languages functions.

Burp Commander written in Go

Parse OpenAPI documents into Burp Suite for automating OpenAPI-based APIs security assessments (approved by PortSwigger for inclusion in their official BApp Store).

Oversecured Vulnerable iOS App

This is a companion software based on the Acunetix Web Vulnerability Scanner 12、13、14 (AWVS 12、AWVS 13、AWVS 14) scanning engine.

Burp extension intended to compact Burp extension tabs by hijacking them to own tab.

Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the active and passive scanner by means of personalized rules through a very intuitive graphical interface.

Burp extension to passively scan for applications revealing software version numbers

The main SamuraiWTF collaborative distro repo.

Utilities for creating Burp Suite Extensions.

Burp Extender plugin that generates a sitemap of a website using Wayback Machine

Burp Suite plugin that dynamically generates Google 2FA codes for use in session handling rules (approved by PortSwigger for inclusion in their official BApp Store).

Burp extension to detect alias traversal via NGINX misconfiguration at scale.

La intención de la workshop es mostrar y orientar a los equipos de desarrollo, seguridad y devops (entre otros) que quieran comenzar en DevSecOps, a segurar sus aplicaciones o bien a conocer un poco más acerca del desarrollo seguro, para esto, estaremos otorgando algunos tips e información que fuimos aprendiendo para armar un Pipeline DevSecOps …

Identify technologies used on websites.

Extension providing view with filtering capabilities for both complete and incomplete requests from all burp tools.

A Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).

Custom scripts for the PIPER Burp extensions.

A plugin that allows you execute python and get return to BurpSuite.

SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibility of manual testing with many powerful evasion techniques.

Security checks pack for Burp Suite

Integrates OWASP Zed Attack Proxy reports into SonarQube

Adds a customizable "Send to..."-context-menu to your BurpSuite.

vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises.

burpsuite extension for check unauthorized vulnerability

Burp extension for automated handling of CSRF tokens

CSTC is a Burp Suite extension that allows request/response modification using a GUI analogous to CyberChef

Burp Extension that copies a request and builds a FFUF skeleton

Burp Bounty profiles compilation, feel free to contribute!

Vaf is a cross-platform very advanced and fast web fuzzer written in nim

BurpSuite收集：包括不限于 Burp 文章、破解版、插件(非BApp Store)、汉化等相关教程，欢迎添砖加瓦---burpsuite-pro burpsuite-extender burpsuite cracked-version hackbar hacktools fuzzing fuzz-testing burp-plugin burp-extensions bapp-store brute-force-attacks brute-force-passwords waf sqlmap jar

Manual JavaScript Linting is a Bug

Burp Suite extension to passively scan for applications revealing server error messages

Advanced Reconnaissance tool to enumerate attacking surface of the target.

burpsuite extension for check and extract sensitive request parameter

The objective of this Burp Suite extension is the flexible and dynamic extraction, correlation, and structured presentation of information from the Burp Suite project as well as the flexible and dynamic on-the-fly modification of outgoing or incoming HTTP requests using Python scripts. Thus, Turbo Data Miner shall aid in gaining a better and fas…

burpsuite extension for extract information from data

Damn Vulnerable Bank is designed to be an intentionally vulnerable android application. This provides an interface to assess your android application security hacking skills.

Burp Suite Pro Loader & Keygen ( All version supported )

Demo - how to easily build security testing for Web App, using Zap and Glue

Burp Suite plugin that adds additional checks to the passive scanner to reveal the origin IP(s) of Cloudflare-protected web applications.

The OWASP ZAP core project