There are 11 repositories under burp topic.
Dictionary sets often used in penetration testing work , 渗透测试工作中经常使用的字典集。
captcha-killer的修改版,支持关键词识别base64编码的图片,添加免费ocr库,用于验证码爆破,适配新版Burpsuite
Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.
Awesome Burp Suite Resources. 400+ open source Burp plugins, 400+ posts and videos.
Burp插件,根据自定义来达到对数据包的处理(适用于加解密、爆破等),类似mitmproxy,不同点在于经过了burp中转,在自动加解密的基础上,不影响APP、网站加解密正常逻辑等。
Burp Suite Certified Practitioner Exam Study
Burp Plugin to decrypt AES encrypted traffic on the fly
HopLa Burp Suite Extender plugin - Adds autocompletion support and useful payloads in Burp Suite
Blackbox Protobuf is a set of tools for working with encoded Protocol Buffers (protobuf) without the matching protobuf definition.
HTTP file upload scanner for Burp Proxy
Burp-Automator: A Burp Suite Automation Tool with Slack Integration. It can be used with Jenkins and Selenium to automate Dynamic Application Security Testing (DAST).
[Draft]Awesome Cyber Security Resource Collection. Currently contains 8000+ open source repositories, and not very well classified. For each repository, extra info included: star count, commit count, last update time. This is the DRAFT version.
Commodity Injection Signatures, Malicious Inputs, XSS, HTTP Header Injection, XXE, RCE, Javascript, XSLT
Automate security tests using Burp Suite.
Wordlist for content(directory) bruteforce discovering with Burp or dirsearch
A script for installing private Burp Collaborator with free Let's Encrypt SSL-certificate
Burp Suite extension that offers a toolkit for testing GraphQL endpoints.
A burp suite extension that reviews backup, old, temporary and unreferenced files on web server for sensitive information (OWASP WSTG-CONF-04, OTG-CONFIG-004)
jsonp is a Burp Extension which attempts to reveal JSONP functionality behind JSON endpoints.
Burp Bounty profiles compilation, feel free to contribute!
gRPC-Web Pentesting Suite + Burp Suite Extension
Burp and ZAP plugin to analyse Content-Security-Policy headers or generate template CSP configuration from crawling a Website
Burp extension intended to compact Burp extension tabs by hijacking them to own tab.
The Web Audit Search Engine - Index and Search HTTP Requests and Responses in Web Application Audits with ElasticSearch
A Burp Suite Extension for pentester and bug bounty hunters an to maintain checklist, map flows, write test cases and track vulnerabilities
Burp Extension that copies a request and builds a FFUF skeleton