1. JwtcatA CPU-based JSON Web Token (JWT) cracker and - to some extent - scanner.
2. SwurgParse OpenAPI documents into Burp Suite for automating OpenAPI-based APIs security assessments (approved by PortSwigger for inclusion in their official BApp Store).
3. WirespyFramework designed to automate various wireless networks attacks (the project was presented on Pentester Academy TV's toolbox in 2017).
4. smbauditPerform various SMB-related attacks, particularly useful for testing large Active Directory environments.
5. googleauthenticatorBurp Suite plugin that dynamically generates Google 2FA codes for use in session handling rules (approved by PortSwigger for inclusion in their official BApp Store).
6. xmlrpc-bruteforcerMulti-threaded XMLRPC brute forcer using amplification attacks targeting WordPress installations prior to version 4.4.
7. flarequenchBurp Suite plugin that adds additional checks to the passive scanner to reveal the origin IP(s) of Cloudflare-protected web applications.