Topic: burp-extensions Goto Github

👇 Here are 249 public repositories matching this topic...

1ultimat3 / badintent
burp-extensions,Intercept, modify, repeat and attack Android's Binder transactions using Burp Suite
User: 1ultimat3
android burp-extensions pentesting mobile-security

acmesec / sylas
burp-extensions,新一代子域名主/被动收集工具 - Subdomain automatic/passive collection tool
Organization: acmesec
burp-extensions burp-plugin burpsuite-extender burpsuite-tools scan scanner scanner-web subdomain-finder subdomain-scanner

alphaseclab / awesome-burp-suite
burp-extensions,Awesome Burp Suite Resources. 400+ open source Burp plugins, 400+ posts and videos.
User: alphaseclab
burp burp-suite burp-extensions

anof-cyber / pycript
burp-extensions,Burp Suite extension for bypassing client-side encryption for pentesting and bug bounty
User: anof-cyber
Home Page: https://pycript.souravkalal.tech/
application-security burp-extensions burp-plugin burpsuite burpsuite-extender cybersecurity encryption infosec penetration-testing pentesting

api-security / apikit
burp-extensions,APIKit：Discovery, Scan and Audit APIs Toolkit All In One.
Organization: api-security
burp-extensions apisec api-security api-sec

aress31 / burpgpt
burp-extensions,A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities, and enables running traffic-based analysis of any type.
User: aress31
ai burp-extensions burpsuite cybersecurity gpt openai pentesting security security-automation webapp

aress31 / openapi-parser
burp-extensions,Parse OpenAPI documents into Burp Suite for automating OpenAPI-based APIs security assessments (approved by PortSwigger for inclusion in their official BApp Store).
User: aress31
burpsuite restful-api parser burp-plugin pentesting openapi-specification swagger yaml json openapi

artssec / burp-exporter
burp-extensions,Exporter is a Burp Suite extension to copy a request to a file or the clipboard as multiple programming languages functions.
User: artssec
Home Page: https://www.artssec.com
burpsuite burp-extensions security-tools exporter python bappstore

bishopfox / gadgetprobe
burp-extensions,Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.
Organization: bishopfox
Home Page: https://labs.bishopfox.com/tech-blog/gadgetprobe
burp-extensions security-tools java-deserialization pentesting pentest-tools javassist java

bit4woo / domain_hunter
burp-extensions,A Burp Suite Extension that try to find all sub-domain, similar-domain and related-domain of an organization automatically! 基于流量自动收集整个企业或组织的子域名、相似域名、相关域名的burp插件
User: bit4woo
Home Page: https://www.bilibili.com/video/BV1Jt4y1U7YG/
domain-hunter subdomain burp-extensions burp-plugin spider sitemap similar-domain related-domain certification subject-alternative-name

bit4woo / fiora
burp-extensions,Fiora：漏洞PoC框架Nuclei的图形版。快捷搜索PoC、一键运行Nuclei。即可作为独立程序运行，也可作为burp插件使用。
User: bit4woo
Home Page: https://www.bilibili.com/video/bv1Ha411z7T1
nuclei poc nuclei-gui burp-extensions fiora

bit4woo / knife
burp-extensions,A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅
User: bit4woo
Home Page: https://www.bilibili.com/video/bv1BC4y1s7nS
burp-extensions burpsuite-extender update-cookie cookie knife burp-plugin menu unicode-to-chinese u2c hackbar

bit4woo / recaptcha
burp-extensions,reCAPTCHA = REcognize CAPTCHA: A Burp Suite Extender that recognize CAPTCHA and use for intruder payload 自动识别图形验证码并用于burp intruder爆破模块的插件
User: bit4woo
burp-extensions burp-plugin captcha intruder burpsuite recaptcha recognize-captcha recognizes-images

bit4woo / u2c
burp-extensions,Unicode To Chinese -- U2C : A burpsuite Extender That Convert Unicode To Chinese 【Unicode编码转中文的burp插件】
User: bit4woo
Home Page: https://github.com/bit4woo/knife
burp-extensions burp-plugin burpsuite-extender unicode chinese

c0ny1 / captcha-killer
burp-extensions,burp验证码识别接口调用插件
User: c0ny1
burp-extensions burpsuite-extender burp-plugin captcha

c0ny1 / httpheadmodifer
burp-extensions,一款快速修改HTTP数据包头的Burp Suite插件
User: c0ny1
burp-extensions httphelper

c0ny1 / sqlmap4burp-plus-plus
burp-extensions,sqlmap4burp++是一款兼容Windows，mac，linux多个系统平台的Burp与sqlmap联动插件
User: c0ny1
burp-extensions burpsuite-extender sqlmap

codingo / minesweeper
burp-extensions,A Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).
User: codingo
burpsuite burpsuitepro burp-extensions burp-plugin web-security hacking hacking-tool web-application-hacking cryptocurrency bitcoin

d3mondev / burp-vps-proxy
burp-extensions,This Burp Suite extension allows for the automatic creation and deletion of an upstream SOCKS5 proxy on popular cloud services.
User: d3mondev
bugbounty burp-extensions burpsuite pentesting proxy socks5

d3vilbug / hackbar
burp-extensions,HackBar plugin for Burpsuite
User: d3vilbug
hackbar burp-plugin burp-extensions burpsuite-extender burp burpsuite burp-ui

doyensec / inql
burp-extensions,InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.
Organization: doyensec
Home Page: https://doyensec.com/
graphql security-scanner graphql-security api-documentation-tool security-tools security-audit burp-extensions burpsuite bugbounty bugbounty-tool

ebryx / aes-killer
burp-extensions,Burp Plugin to decrypt AES encrypted traffic on the fly
Organization: ebryx
burpsuite aes-encryption decryptor aes-decryption burp-plugin burp-extensions burp burpsuite-extender burpsuite-tools burp-ui

f0ng / autodecoder-usages
burp-extensions,autoDecoder的用法及案例，包含加解密方法、绕waf、替换参数等操作。
User: f0ng
burp-extensions burpsuite-tools

f0ng / captcha-killer-modified
burp-extensions,captcha-killer的修改版，支持关键词识别base64编码的图片，添加免费ocr库，用于验证码爆破，适配新版Burpsuite
User: f0ng
Home Page: https://f0ng.github.io/2022/03/24/burp%E9%AA%8C%E8%AF%81%E7%A0%81%E7%88%86%E7%A0%B4%E6%8F%92%E4%BB%B6%E4%BA%8C%E6%94%B9/
burp-extensions burp burp-plugin

f0ng / log4j2burpscanner
burp-extensions,CVE-2021-44228 Log4j2 BurpSuite Scanner,Customize ceye.io api or other apis,including internal networks
User: f0ng
Home Page: https://f0ng.github.io/2021/12/22/log4j2burpscanner/
burp-extensions burp-plugin log4j2 log4jshell

hisxo / jspector
burp-extensions,A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues
User: hisxo
burp-extensions burpsuite burpsuite-tools

hisxo / reconaizer
burp-extensions,A Burp Suite extension to add OpenAI (GPT) on Burp and help you with your Bug Bounty recon to discover endpoints, params, URLs, subdomains and more!
User: hisxo
bugbounty burp-extensions burpsuite openai openai-api gpt-4 openai-chatgpt

kapytein / jsonp
burp-extensions,jsonp is a Burp Extension which attempts to reveal JSONP functionality behind JSON endpoints.
User: kapytein
burp burp-extensions infosec pentesting

moeinfatehi / backup-finder
burp-extensions,A burp suite extension that reviews backup, old, temporary and unreferenced files on web server for sensitive information (OWASP WSTG-CONF-04, OTG-CONFIG-004)
User: moeinfatehi
application-security appsecurity burp burp-extensions burpsuite burpsuite-extender owasp penetration-testing pentesting portswigger

mr-xn / burpsuite-collections
burp-extensions,有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file
User: mr-xn
Home Page: https://mrxn.net/?tag=burpsuite
burpsuite burpsuite-extender burpsuite-tools hacktool pentesting pentest-tool burp-extensions hackbar j2eescan sqlmap

netsoss / headless-burp
burp-extensions,Automate security tests using Burp Suite.
Organization: netsoss
Home Page: https://netsoss.github.io/headless-burp/
burp burp-extensions burpsuite burp-plugin maven-plugin headless continuous-security automation

p3gleg / pwnback
burp-extensions,Burp Extender plugin that generates a sitemap of a website using Wayback Machine
User: p3gleg
security-tools burp burpsuite burp-extensions information-retrieval osint

prakharathreya / struts2-rce
burp-extensions,A Burp Extender for checking for struts 2 RCE vulnerabilities.
User: prakharathreya
struts2-rce burp-extensions struts2

silentsignal / burp-log4shell
burp-extensions,Log4Shell scanner for Burp Suite
Organization: silentsignal
Home Page: https://blog.silentsignal.eu/2021/12/12/our-new-tool-for-enumerating-hidden-log4shell-affected-hosts/
burp-extensions burp-plugin burpsuite burpsuite-extender log4j2

silentsignal / burp-text4shell
burp-extensions,Text4Shell scanner for Burp Suite
Organization: silentsignal
Home Page: https://blog.silentsignal.eu/2022/10/18/our-new-scanner-for-text4shell/
burp-extensions

simioni87 / auth_analyzer
burp-extensions,Burp Extension for testing authorization issues. Automated request repeating and parameter value extraction on the fly.
User: simioni87
portswigger burpsuite burp-extensions burp-plugin authorization application-security pentest-tool auth

sleeyax / burp-awesome-tls
burp-extensions,Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.
User: sleeyax
burp burp-cloudflare-bypass burp-extensions burp-ja3 burp-suite burp-waf burpsuite go golang ja3 ja3-fingerprint java tls tls-fingerprint utls

summitt / nope-proxy
burp-extensions,TCP/UDP Non-HTTP Proxy Extension (NoPE) for Burp Suite.
User: summitt
appsec appsecurity burp-extensions burp-plugin burpsuite burpsuite-extender hacking mitmproxy pentesting protobuf

synacktiv / hopla
burp-extensions, HopLa Burp Suite Extender plugin - Adds autocompletion support and useful payloads in Burp Suite
Organization: synacktiv
burp-plugin burp-extensions burp-ui burp-suite burp

usdag / cstc
burp-extensions,CSTC is a Burp Suite extension that allows request/response modification using a GUI analogous to CyberChef
Organization: usdag
Home Page: https://herolab.usd.de/news-cyber-security-transformation-chef/
cyberchef extender burpsuite burp-extensions burp-plugin java encoding transformation

usdag / flowmate
burp-extensions,FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application and matches their occurrences in the responses.
Organization: usdag
Home Page: https://herolab.usd.de/unsere-plattformen-und-tools/
burp-extensions burpsuite

vaycore / onescan
burp-extensions,OneScan是递归目录扫描的BurpSuite插件
User: vaycore
burp burp-extensions burp-plugin dirscan fuzz fuzz-testing

volkandindar / agartha
burp-extensions,A Burp extension generates dynamic payloads to uncover injection flaws (LFI, RCE, SQLi), creates user access tables to identify authentication and authorization issues, attempts to bypass HTTP 403 access restrictions, and converts HTTP requests as JavaScript code for enhanced XSS exploitation.
User: volkandindar
penetration-testing pentesting cybersecurity burp-extensions hacking hacking-tool application-security appsec offsec burpsuite

vsec7 / burpsuite-xkeys
burp-extensions,A Burp Suite Extension to extract interesting strings (key, secret, token, or etc.) from a webpage.
User: vsec7
burp-extensions burpsuite hacking osint pentest-tool pentesting

wagiro / burpbounty
burp-extensions,Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the active and passive scanner by means of personalized rules through a very intuitive graphical interface.
User: wagiro
bugbounty burp-extensions burpsuite bug-bounty vulnerability-scanner vulnerability-detection

whwlsfb / burpcrypto
burp-extensions,BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite). 支持多种加密算法或直接执行JS代码的用于爆破前端加密的BurpSuite插件
User: whwlsfb
Home Page: https://blog.wanghw.cn/burpcrypto
burp-extensions burp-plugin burpsuite-extender burpsuite payloads burpcrypto fuzz-testing execute-js-encryption ctf-tools ctf

xer0times / bugbounty
burp-extensions,Bug Bounty stuffs, payloads, scripts, profiles, tips and tricks, ...
User: xer0times
bugbounty burpsuite burp-extensions bug-bounty web-application bughunting bughunting-methodology burpsuite-extender burpsuite-pro bounty-hunters

xer0times / sqli-query-tampering
burp-extensions,SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibility of manual testing with many powerful evasion techniques.
User: xer0times
burp-extensions burpsuite burp-plugin burpsuite-pro sqlinjection sqli evasion bugbounty bug-bounty bughunting

yandex / burp-molly-pack
burp-extensions,Security checks pack for Burp Suite
Organization: yandex
security burp-extensions burp-plugin vulnerability-detection burpsuite burpsuite-pro

yandex / burp-molly-scanner
burp-extensions,Turn your Burp suite into headless active web application vulnerability scanner
Organization: yandex
security burp-extensions vulnerability-scanners automated-testing