burp-extensions

There are 255 repositories under burp-extensions topic.

  • Mr-xn/BurpSuite-collections

    有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file

    Language:HTML3.1k746633

  • aress31/burpgpt

    A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities, and enables running traffic-based analysis of any type.

    Language:Java1.9k3430209

  • API-Security/APIKit

    APIKit:Discovery, Scan and Audit APIs Toolkit All In One.

    Language:Java1.7k1960168

  • wagiro/BurpBounty

    Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the active and passive scanner by means of personalized rules through a very intuitive graphical interface.

    Language:Java1.6k58103337

  • summitt/Nope-Proxy

    TCP/UDP Non-HTTP Proxy Extension (NoPE) for Burp Suite.

    Language:Java1.5k5971237

  • bit4woo/knife

    A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅

    Language:Java1.5k2969195

  • d3vilbug/HackBar

    HackBar plugin for Burpsuite

    Language:Java1.5k652257
  • inql

    doyensec/inql

    InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.

    Language:Python1.5k29105152

  • whwlsfb/BurpCrypto

    BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite). 支持多种加密算法或直接执行JS代码的用于爆破前端加密的BurpSuite插件

    Language:Java1.4k1442167

  • f0ng/captcha-killer-modified

    captcha-killer的修改版,支持关键词识别base64编码的图片,添加免费ocr库,用于验证码爆破,适配新版Burpsuite

    Language:Java1.2k1853129

  • bit4woo/Fiora

    Fiora:漏洞PoC框架Nuclei的图形版。快捷搜索PoC、一键运行Nuclei。即可作为独立程序运行,也可作为burp插件使用。

    Language:Java1.1k1618131

  • alphaSeclab/awesome-burp-suite

    Awesome Burp Suite Resources. 400+ open source Burp plugins, 400+ posts and videos.

    978350246

  • sleeyax/burp-awesome-tls

    Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.

    Language:Java966145864

  • c0ny1/captcha-killer

    burp验证码识别接口调用插件

    Language:Java8521625121

  • hisxo/ReconAIzer

    A Burp Suite extension to add OpenAI (GPT) on Burp and help you with your Bug Bounty recon to discover endpoints, params, URLs, subdomains and more!

    Language:Python80010899

  • bit4woo/reCAPTCHA

    reCAPTCHA = REcognize CAPTCHA: A Burp Suite Extender that recognize CAPTCHA and use for intruder payload 自动识别图形验证码并用于burp intruder爆破模块的插件

    Language:Java7912220163

  • f0ng/log4j2burpscanner

    CVE-2021-44228 Log4j2 BurpSuite Scanner,Customize ceye.io api or other apis,including internal networks

    Language:Java7771163112

  • c0ny1/sqlmap4burp-plus-plus

    sqlmap4burp++是一款兼容Windows,mac,linux多个系统平台的Burp与sqlmap联动插件

    Language:Java70417778

  • bit4woo/domain_hunter

    A Burp Suite Extension that try to find all sub-domain, similar-domain and related-domain of an organization automatically! 基于流量自动收集整个企业或组织的子域名、相似域名、相关域名的burp插件

    Language:Java659248140

  • Ebryx/AES-Killer

    Burp Plugin to decrypt AES encrypted traffic on the fly

    Language:Java6302514117

  • synacktiv/HopLa

    HopLa Burp Suite Extender plugin - Adds autocompletion support and useful payloads in Burp Suite

    Language:Java59513568

  • vaycore/OneScan

    OneScan是递归目录扫描的BurpSuite插件

    Language:Java57482322

  • BishopFox/GadgetProbe

    Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.

    Language:Java56916193

  • silentsignal/burp-log4shell

    Log4Shell scanner for Burp Suite

    Language:Kotlin481131475

  • Acmesec/Sylas

    新一代子域名主/被动收集工具 - Subdomain automatic/passive collection tool

    Language:Java473121548

  • hisxo/JSpector

    A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues

    Language:Python3425335

  • 1ultimat3/BadIntent

    Intercept, modify, repeat and attack Android's Binder transactions using Burp Suite

    Language:Java32134862

  • volkandindar/agartha

    a burp extension creates dynamic payloads to reveal injection flaws(LFI, RCE, SQLi), generates user access tables to spot authentication/authorization issues, and copys Http requests as JavaScript code.

    Language:Python3135564

  • prakharathreya/Struts2-RCE

    A Burp Extender for checking for struts 2 RCE vulnerabilities.

    2704139

  • c0ny1/HTTPHeadModifer

    一款快速修改HTTP数据包头的Burp Suite插件

    Language:Java2554141

  • vsec7/BurpSuite-Xkeys

    A Burp Suite Extension to extract interesting strings (key, secret, token, or etc.) from a webpage.

    Language:Python23614350

  • bit4woo/u2c

    Unicode To Chinese -- U2C : A burpsuite Extender That Convert Unicode To Chinese 【Unicode编码转中文的burp插件】

    Language:Java2304127

  • P3GLEG/PwnBack

    Burp Extender plugin that generates a sitemap of a website using Wayback Machine

    Language:Java22513942

  • d3mondev/burp-vps-proxy

    This Burp Suite extension allows for the automatic creation and deletion of an upstream SOCKS5 proxy on popular cloud services.

    Language:Java2235227

  • NetsOSS/headless-burp

    Automate security tests using Burp Suite.

    Language:Java222203162

  • codingo/Minesweeper

    A Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).

    Language:Python19418249