{"id":18420227,"url":"https://github.com/anof-cyber/pycript","last_synced_at":"2025-04-04T09:08:21.924Z","repository":{"id":114466677,"uuid":"593275605","full_name":"Anof-cyber/PyCript","owner":"Anof-cyber","description":"Burp Suite extension for bypassing client-side encryption for pentesting and bug bounty","archived":false,"fork":false,"pushed_at":"2025-01-20T14:03:36.000Z","size":1289,"stargazers_count":203,"open_issues_count":1,"forks_count":28,"subscribers_count":5,"default_branch":"main","last_synced_at":"2025-03-28T08:09:30.075Z","etag":null,"topics":["application-security","bug-bounty","bugbounty","burp-extensions","burp-plugin","burpsuite","burpsuite-extender","cybersecurity","encryption","infosec","penetration-testing","pentesting","python","security"],"latest_commit_sha":null,"homepage":"https://pycript.souravkalal.tech/","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/Anof-cyber.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":".github/FUNDING.yml","license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null},"funding":{"github":"Anof-Cyber","custom":["https://www.buymeacoffee.com/AnoF"]}},"created_at":"2023-01-25T16:33:50.000Z","updated_at":"2025-03-24T09:56:13.000Z","dependencies_parsed_at":"2023-11-20T12:31:27.610Z","dependency_job_id":"1565fe73-b063-4e16-b1ca-94fc7702b7b7","html_url":"https://github.com/Anof-cyber/PyCript","commit_stats":null,"previous_names":[],"tags_count":5,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Anof-cyber%2FPyCript","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Anof-cyber%2FPyCript/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Anof-cyber%2FPyCript/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Anof-cyber%2FPyCript/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/Anof-cyber","download_url":"https://codeload.github.com/Anof-cyber/PyCript/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":247149501,"owners_count":20891954,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["application-security","bug-bounty","bugbounty","burp-extensions","burp-plugin","burpsuite","burpsuite-extender","cybersecurity","encryption","infosec","penetration-testing","pentesting","python","security"],"created_at":"2024-11-06T04:20:40.124Z","updated_at":"2025-04-04T09:08:21.905Z","avatar_url":"https://github.com/Anof-cyber.png","language":"Python","readme":"# PyCript\n\u003cp align=\"center\"\u003e\n  \u003cimg src=\"https://i.ibb.co/KqGXSq0/Py-Cript-Banner.png\" /\u003e\n\u003c/p\u003e\n\n\n\nPycript is a Burp Suite extension that enables users to encrypt and decrypt requests and responses for manual and automated application penetration testing. It also allows users to create custom encryption and decryption logic using any language like Python, Go, Nodeja, C, Bash etc allowing for a tailored encryption/decryption process for specific needs.\n\n\n[![Deploy](https://github.com/Anof-cyber/PyCript-Docs/actions/workflows/static.yml/badge.svg)](https://github.com/Anof-cyber/PyCript-Docs/actions/workflows/static.yml)\n![GitHub](https://img.shields.io/github/license/Anof-cyber/APTRS)\n![GitHub closed issues](https://img.shields.io/github/issues-closed/Anof-cyber/PyCript)\n[![](https://img.shields.io/static/v1?label=Sponsor\u0026message=%E2%9D%A4\u0026logo=GitHub\u0026color=%23fe8e86)](https://github.com/sponsors/Anof-cyber)\n![GitHub Release Date](https://img.shields.io/github/release-date/anof-cyber/PyCript?style=plastic)\n![GitHub release (latest by date including pre-releases)](https://img.shields.io/github/v/release/anof-cyber/PyCript?include_prereleases)\n![GitHub last commit](https://img.shields.io/github/last-commit/Anof-cyber/PyCript)\n[![](https://i.ibb.co/qsV4mb9/twitter-2.png)](https://twitter.com/ano_f_)[![](https://i.ibb.co/89LKTrL/linkedin-1.png)](https://www.linkedin.com/in/sourav-kalal/)\n\n\n## Support\n\n\u003ca href=\"https://www.buymeacoffee.com/AnoF\"\u003e\u003cimg src=\"https://img.buymeacoffee.com/button-api/?text=Buy me a coffee\u0026emoji=\u0026slug=AnoF\u0026button_colour=FF5F5F\u0026font_colour=ffffff\u0026font_family=Arial\u0026outline_colour=000000\u0026coffee_colour=FFDD00\" /\u003e\u003c/a\u003e\n\n\u003ca href=\"https://github.com/sponsors/Anof-cyber\"\u003e\u003cimg src=\"https://img.shields.io/static/v1?label=Sponsor\u0026message=%E2%9D%A4\u0026logo=GitHub\u0026color=%23fe8e86\" alt=\"Sponsor Anof-cyber\" width=\"230\" height=\"50\"\u003e\u003c/a\u003e\n\n\n## Documentation\n\n\u003ca href=\"https://pycript.souravkalal.tech/#/\"\u003e\u003cimg src=\"https://i.ibb.co/NLTJ6MR/70686099-3855f780-1c79-11ea-8141-899e39459da2.png\" alt=\"70686099-3855f780-1c79-11ea-8141-899e39459da2\" border=\"0\"\u003e\u003c/a\u003e\n\n## Reference\n- [Youtube - PyCript Demo](https://www.youtube.com/watch?v=J8KE5VR8yDk)\n- [Bypassing Asymmetric Client Side Encryption Without Private Key](https://infosecwriteups.com/bypassing-asymmetric-client-side-encryption-without-private-key-822ed0d8aeb6)\n- [Manipulating Encrypted Traffic using PyCript](https://infosecwriteups.com/manipulating-encrypted-traffic-using-pycript-b637612528bb)\n\n\n## Requirements\n\n- Burp Suite with Jython\n    \n## Features\n\n- [X] Encrypt \u0026 Decrypt the Selected Strings from Request Response\n- [X] View and Modify the encrypted request in plain text\n- [X] Decrypt Multiple Requests \n- [X] Perform Burp Scanner, SQL Map, Intruder Bruteforce or any Automation in Plain Text\n- [X] Auto Encrpyt the request on the fly\n- [X] Complete freedom for encryption and decryption logic\n- [X] Ability to handle encryption and decryption even with Key and IV in Request Header or Body\n\n## Roadmap\n\n- [X] Response Encryption \u0026 Decryption\n- [X] Support for GET Paramters\n- [X] Allowing Edit Headers for Request Type ```Custom Request```\n- [X] Supporting multiple languages for encryption and decryption \n\n\n## Demo Code\n\n- Repository for Encryption Decryption PyCript Template [Code Repository ](https://github.com/Anof-cyber/PyCript-Template)\n\n\n\n\n\n\n## Screenshots\n\n![PyCript](https://github.com/Anof-cyber/PyCript-Docs/blob/gh-pages/0.2/assets/Complete%20Body%20-%20Example%201.gif?raw=true)\n\n![PyCript](https://github.com/Anof-cyber/PyCript-Docs/blob/gh-pages/0.2/assets/Complete%20Body%20-%20Example%202.gif?raw=true)\n\n\n![PyCript](https://github.com/Anof-cyber/PyCript-Docs/blob/gh-pages/0.2/assets/Custom%20Request%20-%20Example%201.gif?raw=true)\n\n","funding_links":["https://github.com/sponsors/Anof-Cyber","https://www.buymeacoffee.com/AnoF","https://github.com/sponsors/Anof-cyber","https://img.buymeacoffee.com/button-api/?text=Buy"],"categories":[],"sub_categories":[],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fanof-cyber%2Fpycript","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fanof-cyber%2Fpycript","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fanof-cyber%2Fpycript/lists"}