Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/typeerror/bookmarks
Reclaim control of your Burp Suite Repeater tabs with this powerful extension
appsec bugbounty burp-extensions burpsuite burpsuite-extender burpsuite-pro
Last synced: 28 Jun 2024
![](https://github.com/TypeError.png)
https://github.com/InitRoot/BurpSQLTruncSanner
Messy BurpSuite plugin for SQL Truncation vulnerabilities.
bugbounty burpsuite-extender sql-truncation
Last synced: 14 Jun 2024
![](https://github.com/InitRoot.png)
https://github.com/aress31/burpgpt
A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities, and enables running traffic-based analysis of any type.
ai burp-extensions burp-plugin burpsuite burpsuite-extender cybersecurity gpt gpt-3 openai openai-api pentesting security security-automation webapp
Last synced: 08 Jun 2024
![](https://github.com/aress31.png)
https://github.com/gdgd009xcd/automacrobuilder
A BurpSuite Add-on that allows testing of web application vulnerabilities by recording complex multi-step sequences. You can test applications that need to access pages in a specific order, such as shopping carts or registration of member information.
authentication burpsuite burpsuite-extender burpsuite-tools crawler extender extensions multi-step security security-testing security-tools vulnerability-scanners webcrawler websecurity
Last synced: 19 May 2024
![](https://github.com/gdgd009xcd.png)
https://github.com/adriancitu/burp-tabnabbing-extension
Burp Suite Professional extension in Java for Tabnabbing attack
burp-extensions burp-plugin burpsuite-extender java-8 tabnabbing
Last synced: 19 May 2024
![](https://github.com/AdrianCitu.png)
https://github.com/qdghj/burp_data_collector
A Burp plugin that collects Burp request parameters, directories, paths and file names into the database for sorting
Last synced: 19 May 2024
![](https://github.com/QdghJ.png)
![](https://github.com/c0ny1.png)
https://github.com/lilifengcode/burpsuite-plugins-usage
Burpsuite-Plugins-Usage
burpsuite burpsuite-extender java pentesting python tools
Last synced: 19 May 2024
![](https://github.com/lilifengcode.png)
https://github.com/c0ny1/captcha-killer
burp验证码识别接口调用插件
burp-extensions burp-plugin burpsuite-extender captcha
Last synced: 19 May 2024
![](https://github.com/c0ny1.png)
https://github.com/c0ny1/jsencrypter
一个用于前端加密Fuzz的Burp Suite插件
burpsuite-extender fuzz-testing
Last synced: 19 May 2024
![](https://github.com/c0ny1.png)
https://github.com/c0ny1/sqlmap4burp-plus-plus
sqlmap4burp++是一款兼容Windows,mac,linux多个系统平台的Burp与sqlmap联动插件
burp-extensions burpsuite-extender sqlmap
Last synced: 19 May 2024
![](https://github.com/c0ny1.png)
https://github.com/c0ny1/passive-scan-client
Burp被动扫描流量转发插件
burpsuite-extender passive-vulnerability-scanner vulnerability-scanners
Last synced: 19 May 2024
![](https://github.com/c0ny1.png)
https://github.com/BitTheByte/BitTraversal
Burpsuite Plugin to detect Directory Traversal vulnerabilities
bugbounty burp-extensions burp-plugin burpsuite burpsuite-extender java path-traversal traversal web
Last synced: 12 May 2024
![](https://github.com/BitTheByte.png)
https://github.com/raise-isayan/ViewStateDecoder
Burpsuite extension. Supports ASP.NET ViewStateDecoder
aspnet burp-extensions burpsuite-extender viewstate
Last synced: 12 May 2024
![](https://github.com/raise-isayan.png)
https://github.com/Ebryx/SRePlay
Burpsuite Plugin to bypass strict RePlay protection
burp burp-extensions burp-plugin burpsuite burpsuite-extender burpsuite-tools
Last synced: 12 May 2024
![](https://github.com/Ebryx.png)
https://github.com/raise-isayan/FakeCert
Burp suite Certificate modification tool
burp-extensions burpsuite-extender certificate oscp
Last synced: 12 May 2024
![](https://github.com/raise-isayan.png)
https://github.com/bailsong/BurpDecoder
This is a Burpsuite Extension that will be able to Auto-Decode intercepted request message by PROXY TOOL before the message was shown in PROXY Panel ,and Auto-Encode request message after it forwarded from ProxyTool.这是一个Burpsuite 插件,通过设置,可以在 Proxy 模块拦截到的数据包 被显示之前 自动对请求包信息进行解密,在从Proxy Forward 数据包之后,自动按照原来的顺序重新加密。
burpsuite-extender decode proxy
Last synced: 12 May 2024
![](https://github.com/bailsong.png)
https://github.com/Acmesec/Sylas
新一代子域名主/被动收集工具 - Subdomain automatic/passive collection tool
burp-extensions burp-plugin burpsuite-extender burpsuite-tools scan scanner scanner-web subdomain-finder subdomain-scanner
Last synced: 12 May 2024
![](https://github.com/Acmesec.png)
https://github.com/33time/captcha-killer-5h6m
原插件在新版本burpsuite无法使用,对插件jdk版本进行升级,引用jdk8、base64包
burp-extensions burp-plugin burpsuite-extender captcha
Last synced: 12 May 2024
![](https://github.com/33time.png)
https://github.com/whwlsfb/SpringSpider
Spring Actuator端点的BurpSuite被动扫描插件。
actuator burpsuite-extender passive-scanner passtive spring-boot
Last synced: 12 May 2024
![](https://github.com/whwlsfb.png)
https://github.com/f0ng/autoDecoder
Burp插件,根据自定义来达到对数据包的处理(适用于加解密、爆破等),类似mitmproxy,不同点在于经过了burp中转,在自动加解密的基础上,不影响APP、网站加解密正常逻辑等。
burp burp-plugin burpsuite-extender
Last synced: 12 May 2024
![](https://github.com/f0ng.png)
https://github.com/z2p/sweetPotato
基于burpsuite的资产分析工具
burpsuite-extender information-gathering pentesting-tools subdomain-collection
Last synced: 12 May 2024
![](https://github.com/z2p.png)
https://github.com/gnothiseautonlw/burp-shell-fwd-lfi
A Burp Suite plugin/extension that offers a shell in Burp. Both useful for OS Command injection and LFI exploration
burp-extensions burp-plugin burpsuite burpsuite-extender penetration-testing penetration-testing-tools pentesting security security-tools
Last synced: 07 May 2024
![](https://github.com/gnothiseautonlw.png)
https://github.com/lwierzbicki/RegexFinder
RegexFinder - Burp Suite extension to passively scan responses for occurrence of regular expression patterns.
burp-extensions burp-plugin burpsuite burpsuite-extender java pentesting scanning
Last synced: 01 May 2024
![](https://github.com/lwierzbicki.png)
https://github.com/chopicalqui/TurboDataMiner
The objective of this Burp Suite extension is the flexible and dynamic extraction, correlation, and structured presentation of information from the Burp Suite project as well as the flexible and dynamic on-the-fly modification of outgoing or incoming HTTP requests using Python scripts. Thus, Turbo Data Miner shall aid in gaining a better and faster understanding of the data collected by Burp Suite.
burp burp-api burp-extensions burp-plugin burpsuite burpsuite-extender data-mining intelligence intelligence-gathering
Last synced: 26 Apr 2024
![](https://github.com/chopicalqui.png)
https://github.com/bit4woo/u2c
Unicode To Chinese -- U2C : A burpsuite Extender That Convert Unicode To Chinese 【Unicode编码转中文的burp插件】
burp-extensions burp-plugin burpsuite-extender chinese unicode
Last synced: 26 Apr 2024
![](https://github.com/bit4woo.png)
https://github.com/whwlsfb/BurpCrypto
BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite). 支持多种加密算法或直接执行JS代码的用于爆破前端加密的BurpSuite插件
burp-extensions burp-plugin burpcrypto burpsuite burpsuite-extender ctf ctf-tools execute-js-encryption fuzz-testing payloads
Last synced: 26 Apr 2024
![](https://github.com/whwlsfb.png)
https://github.com/Anof-cyber/PyCript
Burp Suite extension for bypassing client-side encryption using custom logic for pentesting and bug bounty
application-security bug-bounty bugbounty burp-extensions burp-plugin burpsuite burpsuite-extender cybersecurity encryption infosec penetration-testing pentesting python security
Last synced: 26 Apr 2024
![](https://github.com/Anof-cyber.png)
https://github.com/Ebryx/AES-Killer
Burp Plugin to decrypt AES encrypted traffic on the fly
aes-decryption aes-encryption aes-encryption-key aes-killer burp burp-extensions burp-plugin burp-ui burpsuite burpsuite-extender burpsuite-plugin burpsuite-tools decryptor frida-script
Last synced: 26 Apr 2024
![](https://github.com/Ebryx.png)
https://github.com/d3vilbug/HackBar
HackBar plugin for Burpsuite
burp burp-extensions burp-plugin burp-ui burpsuite burpsuite-extender hackbar
Last synced: 26 Apr 2024
![](https://github.com/d3vilbug.png)
https://github.com/Anof-cyber/Pentest-Mapper
A Burp Suite Extension for Application Penetration Testing to map flows, write test cases and track vulnerabilities
burp burp-extensions burp-plugin burpsuite burpsuite-extender burpsuite-tools
Last synced: 26 Apr 2024
![](https://github.com/Anof-cyber.png)
https://github.com/c0ny1/chunked-coding-converter
Burp suite 分块传输辅助插件
burpsuite-extender chunked sleep-chunked
Last synced: 26 Apr 2024
![](https://github.com/c0ny1.png)
https://github.com/nccgroup/BurpSuiteHTTPSmuggler
A Burp Suite extension to help pentesters to bypass WAFs or test their effectiveness using a number of techniques
burpsuite burpsuite-extender bypass waf
Last synced: 26 Apr 2024
![](https://github.com/nccgroup.png)
https://github.com/twelvesec/BearerAuthToken
This burpsuite extender provides a solution on testing Enterprise applications that involve security Authorization tokens into every HTTP requests.Furthermore, this solution provides a better approach to solve the problem of Burp suite automated scanning failures when Authorization tokens exist.
authorization burp burp-extensions burpsuite burpsuite-extender
Last synced: 26 Apr 2024
![](https://github.com/twelvesec.png)
https://github.com/summitt/Nope-Proxy
TCP/UDP Non-HTTP Proxy Extension (NoPE) for Burp Suite.
appsec appsecurity burp-extensions burp-plugin burpsuite burpsuite-extender hacking mitmproxy pentesting protobuf proxy tcp tcpproxy udp updproxy websockets
Last synced: 20 Apr 2024
![](https://github.com/summitt.png)
https://github.com/raise-isayan/YaguraExtender
Burpsuite extension. Supports CJK (Chinese, Japanese, Korean) encoding.
burp-extensions burpsuite-extender cjk-characters encoder-decoder
Last synced: 12 Apr 2024
![](https://github.com/raise-isayan.png)
https://github.com/jpiechowka/burp-security-headers-checker
Super simple Burp Suite extension adding passive scanner checks for missing security headers in server responses
burp burp-extensions burp-plugin burpsuite burpsuite-extender extension http-headers pentesting pentesting-tools plugin security-audit security-headers security-scanner security-tools
Last synced: 12 Apr 2024
![](https://github.com/jpiechowka.png)
https://github.com/dongfangyuxiao/BurpExtend
基于Burp插件开发打造渗透测试自动化
burpsuite-extender passive-vulnerability-scanner poc security security-tools sqlinjection vulnerability-scanner xss
Last synced: 12 Apr 2024
![](https://github.com/dongfangyuxiao.png)
https://github.com/xer0times/BugBounty
Bug Bounty stuffs, payloads, scripts, profiles, tips and tricks, ...
bounty-hunters bug-bounty bugbounty bughunting bughunting-methodology burp-extensions burpsuite burpsuite-extender burpsuite-pro netsparker web-application zaproxy
Last synced: 12 Apr 2024
![](https://github.com/xer0times.png)
https://github.com/romanzaikin/BurpExtension-WhatsApp-Decryption-CheckPoint
This tool was created during our research at Checkpoint Software Technologies on Whatsapp Protocol (This repository will be updated after BlackHat 2019)
burpsuite-extender hacking-tool protocol-buffers whatsapp
Last synced: 12 Apr 2024
![](https://github.com/romanzaikin.png)
https://github.com/bit4woo/knife
A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅
burp burp-extensions burp-plugin burpsuite burpsuite-extender cookie hackbar header-edit http-edit knife menu u2c unicode-to-chinese update-cookie
Last synced: 07 Apr 2024
![](https://github.com/bit4woo.png)
https://github.com/iamaldi/rapid
Rapid is a Burp extension that enables you to save HTTP Request & Response data to a single file a lot easier and faster in one go.
burp-extensions burpsuite burpsuite-extender capture extension files-screenshot rapid
Last synced: 07 Apr 2024
![](https://github.com/iamaldi.png)
https://github.com/ricardojba/poi-slinger
Automatically identify serialization issues in PHP Frameworks by means of an Burp Suite active scan
burp burp-extensions burp-plugin burpsuite burpsuite-extender burpsuite-pro burpsuitepro
Last synced: 07 Apr 2024
![](https://github.com/ricardojba.png)
https://github.com/BitTheByte/BitBlinder
BurpSuite extension to inject custom cross-site scripting payloads on every form/request submitted to detect blind XSS vulnerabilities
burp-extensions burp-plugin burpsuite burpsuite-extender jython python
Last synced: 07 Apr 2024
![](https://github.com/BitTheByte.png)
https://github.com/raise-isayan/BigIPDiscover
It becomes the extension of Burp suite. The cookie set by the BipIP server may include a private IP, which is an extension to detect that IP
big-ip burp-extensions burpsuite-extender
Last synced: 07 Apr 2024
![](https://github.com/raise-isayan.png)
https://github.com/bit4woo/domain_hunter
A Burp Suite Extension that try to find all sub-domain, similar-domain and related-domain of an organization automatically! 基于流量自动收集整个企业或组织的子域名、相似域名、相关域名的burp插件
burp-extensions burp-plugin burpsuite-extender certificate certification domain-discovery domain-hunter domains https-certificate organization-domain related-domain similar-domain sitemap spider subdomain subject-alternative-name subject-name subjectaltname
Last synced: 07 Apr 2024
![](https://github.com/bit4woo.png)
https://github.com/denniskniep/GQLRaider
GQL Burp Extension
burp burp-extensions burp-plugin burpsuite-extender gql graphql
Last synced: 07 Apr 2024
![](https://github.com/denniskniep.png)
https://github.com/Manjesh24/JSON-JS-Beautifier
Burp Suite JSON/JS-Beautifier
Last synced: 07 Apr 2024
![](https://github.com/Manjesh24.png)
https://github.com/moeinfatehi/Backup-Finder
A burp suite extension that reviews backup, old, temporary and unreferenced files on web server for sensitive information (OWASP WSTG-CONF-04, OTG-CONFIG-004)
application-security appsecurity backupfinder burp burp-extensions burpsuite burpsuite-extender data-leakage owasp owasp-top-10 owasp-top-ten penetration-testing pentesting portswigger sensitive-data-exposure
Last synced: 07 Apr 2024
![](https://github.com/moeinfatehi.png)
https://github.com/silentsignal/burp-piper
Piper Burp Suite Extender plugin
burp-extensions burp-plugin burpsuite-extender
Last synced: 07 Apr 2024
![](https://github.com/silentsignal.png)
https://github.com/cak/Bookmarks
A Burp Suite Extension to take back your repeater tabs
appsec bugbounty burp-extensions burpsuite burpsuite-extender burpsuite-pro
Last synced: 07 Apr 2024
![](https://github.com/cak.png)
https://github.com/silentsignal/burp-log4shell
Log4Shell scanner for Burp Suite
burp-extensions burp-plugin burpsuite burpsuite-extender log4j2
Last synced: 07 Apr 2024
![](https://github.com/silentsignal.png)
https://github.com/moeinfatehi/Admin-Panel_Finder
A burp suite extension that enumerates infrastructure and application admin interfaces (OTG-CONFIG-005)
admin-dashboard-finder admin-finder admin-login-finder admin-login-scanner admin-page-finder admin-panel-finder adminpanelfinder application-security burp-extensions burpsuite burpsuite-extender data-leakage find-admin okadminfinder owasp owasp-top-10 owasp-top-ten penetration-testing sensitive-data-exposure sensitive-data-leakage
Last synced: 07 Apr 2024
![](https://github.com/moeinfatehi.png)
https://github.com/mr-xn/burpsuite-collections
有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file
burp-extensions burp-requests burpsuite burpsuite-extender burpsuite-java burpsuite-tools burpsuite-xkeys hackbar hacktool j2eescan jar pentest-tool pentesting python-burp sendto shiro-burp sqlmap waf
Last synced: 06 Apr 2024
![](https://github.com/Mr-xn.png)