Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

https://github.com/typeerror/bookmarks

Reclaim control of your Burp Suite Repeater tabs with this powerful extension

appsec bugbounty burp-extensions burpsuite burpsuite-extender burpsuite-pro

Last synced: 28 Jun 2024

https://github.com/InitRoot/BurpSQLTruncSanner

Messy BurpSuite plugin for SQL Truncation vulnerabilities.

bugbounty burpsuite-extender sql-truncation

Last synced: 14 Jun 2024

https://github.com/aress31/burpgpt

A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities, and enables running traffic-based analysis of any type.

ai burp-extensions burp-plugin burpsuite burpsuite-extender cybersecurity gpt gpt-3 openai openai-api pentesting security security-automation webapp

Last synced: 08 Jun 2024

https://github.com/gdgd009xcd/automacrobuilder

A BurpSuite Add-on that allows testing of web application vulnerabilities by recording complex multi-step sequences. You can test applications that need to access pages in a specific order, such as shopping carts or registration of member information.

authentication burpsuite burpsuite-extender burpsuite-tools crawler extender extensions multi-step security security-testing security-tools vulnerability-scanners webcrawler websecurity

Last synced: 19 May 2024

https://github.com/adriancitu/burp-tabnabbing-extension

Burp Suite Professional extension in Java for Tabnabbing attack

burp-extensions burp-plugin burpsuite-extender java-8 tabnabbing

Last synced: 19 May 2024

https://github.com/qdghj/burp_data_collector

A Burp plugin that collects Burp request parameters, directories, paths and file names into the database for sorting

burpsuite burpsuite-extender

Last synced: 19 May 2024

https://github.com/c0ny1/burp-cookie-porter

一个可快速“搬运”cookie的Burp Suite插件

burpsuite-extender cookie

Last synced: 19 May 2024

https://github.com/c0ny1/captcha-killer

burp验证码识别接口调用插件

burp-extensions burp-plugin burpsuite-extender captcha

Last synced: 19 May 2024

https://github.com/c0ny1/jsencrypter

一个用于前端加密Fuzz的Burp Suite插件

burpsuite-extender fuzz-testing

Last synced: 19 May 2024

https://github.com/c0ny1/sqlmap4burp-plus-plus

sqlmap4burp++是一款兼容Windows,mac,linux多个系统平台的Burp与sqlmap联动插件

burp-extensions burpsuite-extender sqlmap

Last synced: 19 May 2024

https://github.com/BitTheByte/BitTraversal

Burpsuite Plugin to detect Directory Traversal vulnerabilities

bugbounty burp-extensions burp-plugin burpsuite burpsuite-extender java path-traversal traversal web

Last synced: 12 May 2024

https://github.com/raise-isayan/ViewStateDecoder

Burpsuite extension. Supports ASP.NET ViewStateDecoder

aspnet burp-extensions burpsuite-extender viewstate

Last synced: 12 May 2024

https://github.com/Ebryx/SRePlay

Burpsuite Plugin to bypass strict RePlay protection

burp burp-extensions burp-plugin burpsuite burpsuite-extender burpsuite-tools

Last synced: 12 May 2024

https://github.com/raise-isayan/FakeCert

Burp suite Certificate modification tool

burp-extensions burpsuite-extender certificate oscp

Last synced: 12 May 2024

https://github.com/bailsong/BurpDecoder

This is a Burpsuite Extension that will be able to Auto-Decode intercepted request message by PROXY TOOL before the message was shown in PROXY Panel ,and Auto-Encode request message after it forwarded from ProxyTool.这是一个Burpsuite 插件,通过设置,可以在 Proxy 模块拦截到的数据包 被显示之前 自动对请求包信息进行解密,在从Proxy Forward 数据包之后,自动按照原来的顺序重新加密。

burpsuite-extender decode proxy

Last synced: 12 May 2024

https://github.com/Acmesec/Sylas

新一代子域名主/被动收集工具 - Subdomain automatic/passive collection tool

burp-extensions burp-plugin burpsuite-extender burpsuite-tools scan scanner scanner-web subdomain-finder subdomain-scanner

Last synced: 12 May 2024

https://github.com/33time/captcha-killer-5h6m

原插件在新版本burpsuite无法使用,对插件jdk版本进行升级,引用jdk8、base64包

burp-extensions burp-plugin burpsuite-extender captcha

Last synced: 12 May 2024

https://github.com/whwlsfb/SpringSpider

Spring Actuator端点的BurpSuite被动扫描插件。

actuator burpsuite-extender passive-scanner passtive spring-boot

Last synced: 12 May 2024

https://github.com/f0ng/autoDecoder

Burp插件,根据自定义来达到对数据包的处理(适用于加解密、爆破等),类似mitmproxy,不同点在于经过了burp中转,在自动加解密的基础上,不影响APP、网站加解密正常逻辑等。

burp burp-plugin burpsuite-extender

Last synced: 12 May 2024

https://github.com/gnothiseautonlw/burp-shell-fwd-lfi

A Burp Suite plugin/extension that offers a shell in Burp. Both useful for OS Command injection and LFI exploration

burp-extensions burp-plugin burpsuite burpsuite-extender penetration-testing penetration-testing-tools pentesting security security-tools

Last synced: 07 May 2024

https://github.com/lwierzbicki/RegexFinder

RegexFinder - Burp Suite extension to passively scan responses for occurrence of regular expression patterns.

burp-extensions burp-plugin burpsuite burpsuite-extender java pentesting scanning

Last synced: 01 May 2024

https://github.com/chopicalqui/TurboDataMiner

The objective of this Burp Suite extension is the flexible and dynamic extraction, correlation, and structured presentation of information from the Burp Suite project as well as the flexible and dynamic on-the-fly modification of outgoing or incoming HTTP requests using Python scripts. Thus, Turbo Data Miner shall aid in gaining a better and faster understanding of the data collected by Burp Suite.

burp burp-api burp-extensions burp-plugin burpsuite burpsuite-extender data-mining intelligence intelligence-gathering

Last synced: 26 Apr 2024

https://github.com/bit4woo/u2c

Unicode To Chinese -- U2C : A burpsuite Extender That Convert Unicode To Chinese 【Unicode编码转中文的burp插件】

burp-extensions burp-plugin burpsuite-extender chinese unicode

Last synced: 26 Apr 2024

https://github.com/whwlsfb/BurpCrypto

BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite). 支持多种加密算法或直接执行JS代码的用于爆破前端加密的BurpSuite插件

burp-extensions burp-plugin burpcrypto burpsuite burpsuite-extender ctf ctf-tools execute-js-encryption fuzz-testing payloads

Last synced: 26 Apr 2024

https://github.com/Anof-cyber/PyCript

Burp Suite extension for bypassing client-side encryption using custom logic for pentesting and bug bounty

application-security bug-bounty bugbounty burp-extensions burp-plugin burpsuite burpsuite-extender cybersecurity encryption infosec penetration-testing pentesting python security

Last synced: 26 Apr 2024

https://github.com/Anof-cyber/Pentest-Mapper

A Burp Suite Extension for Application Penetration Testing to map flows, write test cases and track vulnerabilities

burp burp-extensions burp-plugin burpsuite burpsuite-extender burpsuite-tools

Last synced: 26 Apr 2024

https://github.com/c0ny1/chunked-coding-converter

Burp suite 分块传输辅助插件

burpsuite-extender chunked sleep-chunked

Last synced: 26 Apr 2024

https://github.com/nccgroup/BurpSuiteHTTPSmuggler

A Burp Suite extension to help pentesters to bypass WAFs or test their effectiveness using a number of techniques

burpsuite burpsuite-extender bypass waf

Last synced: 26 Apr 2024

https://github.com/twelvesec/BearerAuthToken

This burpsuite extender provides a solution on testing Enterprise applications that involve security Authorization tokens into every HTTP requests.Furthermore, this solution provides a better approach to solve the problem of Burp suite automated scanning failures when Authorization tokens exist.

authorization burp burp-extensions burpsuite burpsuite-extender

Last synced: 26 Apr 2024

https://github.com/raise-isayan/YaguraExtender

Burpsuite extension. Supports CJK (Chinese, Japanese, Korean) encoding.

burp-extensions burpsuite-extender cjk-characters encoder-decoder

Last synced: 12 Apr 2024

https://github.com/jpiechowka/burp-security-headers-checker

Super simple Burp Suite extension adding passive scanner checks for missing security headers in server responses

burp burp-extensions burp-plugin burpsuite burpsuite-extender extension http-headers pentesting pentesting-tools plugin security-audit security-headers security-scanner security-tools

Last synced: 12 Apr 2024

https://github.com/romanzaikin/BurpExtension-WhatsApp-Decryption-CheckPoint

This tool was created during our research at Checkpoint Software Technologies on Whatsapp Protocol (This repository will be updated after BlackHat 2019)

burpsuite-extender hacking-tool protocol-buffers whatsapp

Last synced: 12 Apr 2024

https://github.com/bit4woo/knife

A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅

burp burp-extensions burp-plugin burpsuite burpsuite-extender cookie hackbar header-edit http-edit knife menu u2c unicode-to-chinese update-cookie

Last synced: 07 Apr 2024

https://github.com/iamaldi/rapid

Rapid is a Burp extension that enables you to save HTTP Request & Response data to a single file a lot easier and faster in one go.

burp-extensions burpsuite burpsuite-extender capture extension files-screenshot rapid

Last synced: 07 Apr 2024

https://github.com/ricardojba/poi-slinger

Automatically identify serialization issues in PHP Frameworks by means of an Burp Suite active scan

burp burp-extensions burp-plugin burpsuite burpsuite-extender burpsuite-pro burpsuitepro

Last synced: 07 Apr 2024

https://github.com/BitTheByte/BitBlinder

BurpSuite extension to inject custom cross-site scripting payloads on every form/request submitted to detect blind XSS vulnerabilities

burp-extensions burp-plugin burpsuite burpsuite-extender jython python

Last synced: 07 Apr 2024

https://github.com/raise-isayan/BigIPDiscover

It becomes the extension of Burp suite. The cookie set by the BipIP server may include a private IP, which is an extension to detect that IP

big-ip burp-extensions burpsuite-extender

Last synced: 07 Apr 2024

https://github.com/bit4woo/domain_hunter

A Burp Suite Extension that try to find all sub-domain, similar-domain and related-domain of an organization automatically! 基于流量自动收集整个企业或组织的子域名、相似域名、相关域名的burp插件

burp-extensions burp-plugin burpsuite-extender certificate certification domain-discovery domain-hunter domains https-certificate organization-domain related-domain similar-domain sitemap spider subdomain subject-alternative-name subject-name subjectaltname

Last synced: 07 Apr 2024

https://github.com/Manjesh24/JSON-JS-Beautifier

Burp Suite JSON/JS-Beautifier

burpsuite-extender

Last synced: 07 Apr 2024

https://github.com/moeinfatehi/Backup-Finder

A burp suite extension that reviews backup, old, temporary and unreferenced files on web server for sensitive information (OWASP WSTG-CONF-04, OTG-CONFIG-004)

application-security appsecurity backupfinder burp burp-extensions burpsuite burpsuite-extender data-leakage owasp owasp-top-10 owasp-top-ten penetration-testing pentesting portswigger sensitive-data-exposure

Last synced: 07 Apr 2024

https://github.com/silentsignal/burp-piper

Piper Burp Suite Extender plugin

burp-extensions burp-plugin burpsuite-extender

Last synced: 07 Apr 2024

https://github.com/cak/Bookmarks

A Burp Suite Extension to take back your repeater tabs

appsec bugbounty burp-extensions burpsuite burpsuite-extender burpsuite-pro

Last synced: 07 Apr 2024

https://github.com/mr-xn/burpsuite-collections

有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file

burp-extensions burp-requests burpsuite burpsuite-extender burpsuite-java burpsuite-tools burpsuite-xkeys hackbar hacktool j2eescan jar pentest-tool pentesting python-burp sendto shiro-burp sqlmap waf

Last synced: 06 Apr 2024