burp

There are 11 repositories under burp topic.

• bit4woo / knife

  A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅

  burp-extensionsburpsuite-extenderupdate-cookiecookieknifeburp-pluginmenuunicode-to-chineseu2chackbarburpsuiteburphttp-editheader-edit
  Language:Java 1545

• a3vilc0de / PentesterSpecialDict

  Dictionary sets often used in penetration testing work , 渗透测试工作中经常使用的字典集。

  dictionaryfuzzingfuzzburpblastboom
  Language:PHP 1505

• d3vilbug / HackBar

  HackBar plugin for Burpsuite

  burpburp-extensionsburp-pluginburp-uiburpsuiteburpsuite-extenderhackbar
  Language:Java 1495

• f0ng / captcha-killer-modified

  captcha-killer的修改版，支持关键词识别base64编码的图片，添加免费ocr库，用于验证码爆破，适配新版Burpsuite

  burp-extensionsburpburp-plugin
  Language:Java 1341

• sleeyax / burp-awesome-tls

  Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.

  burpburp-cloudflare-bypassburp-extensionsburp-ja3burp-suiteburp-wafburpsuitegogolangja3ja3-fingerprintjavatlstls-fingerprintutls
  Language:Java 1059

• alphaSeclab / awesome-burp-suite

  Awesome Burp Suite Resources. 400+ open source Burp plugins, 400+ posts and videos.

  burpburp-suiteburp-extensions
  984

• f0ng / autoDecoder

  Burp插件，根据自定义来达到对数据包的处理（适用于加解密、爆破等），类似mitmproxy，不同点在于经过了burp中转，在自动加解密的基础上，不影响APP、网站加解密正常逻辑等。

  burpburp-pluginburpsuite-extender
  Language:Java 848

• botesjuan / Burp-Suite-Certified-Practitioner-Exam-Study

  Burp Suite Certified Practitioner Exam Study

  payloadpentestingvulnerabilityxssbscpburpportswigger
  Language:Python 846

• Ebryx / AES-Killer

  Burp Plugin to decrypt AES encrypted traffic on the fly

  burpsuiteaes-encryptiondecryptoraes-decryptionburp-pluginburp-extensionsburpburpsuite-extenderburpsuite-toolsburp-uiaes-killerburpsuite-pluginaes-encryption-keyfrida-script
  Language:Java 633

• vaycore / OneScan

  OneScan是递归目录扫描的BurpSuite插件

  burpburp-extensionsburp-plugindirscanfuzzfuzz-testing
  Language:Java 633

• synacktiv / HopLa

  HopLa Burp Suite Extender plugin - Adds autocompletion support and useful payloads in Burp Suite

  burpburp-extensionsburp-pluginburp-suiteburp-ui
  Language:Java 598

• nccgroup / blackboxprotobuf

  Blackbox Protobuf is a set of tools for working with encoded Protocol Buffers (protobuf) without the matching protobuf definition.

  burpprotobuf
  Language:Python 487

• modzero / mod0BurpUploadScanner

  HTTP file upload scanner for Burp Proxy

  fileuploadburpscannersecurityuploadscannerextensionmultipart
  Language:Perl 482

• 0x4D31 / burpa

  Burp-Automator: A Burp Suite Automation Tool with Slack Integration. It can be used with Jenkins and Selenium to automate Dynamic Application Security Testing (DAST).

  securityburpburpsuitepythonsecurity-toolsweb-securityautomationdevopssecurity-scannersecurity-automation
  Language:Python 481

• alphaSeclab / awesome-cyber-security

  [Draft]Awesome Cyber Security Resource Collection. Currently contains 8000+ open source repositories, and not very well classified. For each repository, extra info included: star count, commit count, last update time. This is the DRAFT version.

  vulnerabilityiot-securitypentestdata-exfiltrationmetasploitburpkaliowaspc2anti-viruscobalt-strikereconosintsocial-engineering-attackspasswordthreat-huntpayloadwifi-hackingpost-exploitationprivilege-escalation
  450

• CompassSecurity / SAMLRaider

  SAML2 Burp Extension

  samlburp
  Language:Java 398
• Commodity-Injection-Signatures

  xsscx / Commodity-Injection-Signatures

  Commodity Injection Signatures, Malicious Inputs, XSS, HTTP Header Injection, XXE, RCE, Javascript, XSLT

  burpburpsuiteexploitfuzzingheaderhtmlhttpinjectioninjection-signaturesinputjavascriptmaliciouspocrandomrcexss
  Language:HTML 385
• rescope

  root4loot / rescope

  A scope generation tool for Burp Suite & ZAP

  security-toolswebsecbugbountypentestingburpburpsuitezapenumerationgosecurityinfosecgolangscope
  Language:Go 314

• P3GLEG / PwnBack

  Burp Extender plugin that generates a sitemap of a website using Wayback Machine

  security-toolsburpburpsuiteburp-extensionsinformation-retrievalosint
  Language:Java 226

• NetsOSS / headless-burp

  Automate security tests using Burp Suite.

  burpburp-extensionsburpsuiteburp-pluginmaven-pluginheadlesscontinuous-securityautomation
  Language:Java 223

• cujanovic / Content-Bruteforcing-Wordlist

  Wordlist for content(directory) bruteforce discovering with Burp or dirsearch

  brute-forcebruteforcedirectoryburpburpsuitepentestingpentest-tool
  Language:Python 210

• putsi / privatecollaborator

  A script for installing private Burp Collaborator with free Let's Encrypt SSL-certificate

  bugbountyburpburpsuiteburpsuiteprocollaboratorpenetration-testingpenetration-testing-tools
  Language:Shell 203

• bl4de / research

  Bug Bounty writeups, Vulnerability Research, Tutorials, Tips&Tricks

  bugbountyburpburpsuitehackingitsecurityjavascriptmalwarepenetration-testingpentestpentestingransomware
  Language:JavaScript 184

• forcesunseen / graphquail

  Burp Suite extension that offers a toolkit for testing GraphQL endpoints.

  burpextensiongraphqlsecuritysuitetesting
  Language:Java 173

• moeinfatehi / Backup-Finder

  A burp suite extension that reviews backup, old, temporary and unreferenced files on web server for sensitive information (OWASP WSTG-CONF-04, OTG-CONFIG-004)

  application-securityappsecuritybackupfinderburpburp-extensionsburpsuiteburpsuite-extenderdata-leakageowaspowasp-top-10owasp-top-tenpenetration-testingpentestingportswiggersensitive-data-exposure
  Language:Java 151

• kapytein / jsonp

  jsonp is a Burp Extension which attempts to reveal JSONP functionality behind JSON endpoints.

  burpburp-extensionsinfosecpentesting
  Language:Python 150

• Hack-Free / HackBar

  Firefox and Google Chrome Extension of HackBar without license

  firefox-extensionhackbarhackburp
  Language:JavaScript 147

• six2dez / burp-bounty-profiles

  Burp Bounty profiles compilation, feel free to contribute!

  burpsuiteburpbountypentesthacking
  Language:BlitzBasic 142

• nxenon / grpc-pentest-suite

  gRPC-Web Pentesting Suite + Burp Suite Extension

  burpburp-extensionsburpsuiteextensiongrpcgrpc-pentestinggrpc-toolgrpc-webpentesting-grpcprotobufprotocol-buffers
  Language:Python 137

• GoSecure / csp-auditor

  Burp and ZAP plugin to analyse Content-Security-Policy headers or generate template CSP configuration from crawling a Website

  cspburp-pluginzap-pluginhttpsecurityzapburphacktoberfest
  Language:Java 136

• hvqzao / burp-wildcard

  Burp extension intended to compact Burp extension tabs by hijacking them to own tab.

  burpburpsuiteburp-pluginburp-extensions
  Language:Java 127

• silentsignal / burp-requests

  Copy as requests plugin for Burp Suite

  burppython-requests
  Language:Java 121

• thomaspatzke / WASE

  The Web Audit Search Engine - Index and Search HTTP Requests and Responses in Web Application Audits with ElasticSearch

  burpburp-pluginelasticsearchpentestingwebappsec
  Language:Python 111

• Anof-cyber / Pentest-Mapper

  A Burp Suite Extension for pentester and bug bounty hunters an to maintain checklist, map flows, write test cases and track vulnerabilities

  burpburp-extensionsburp-pluginburpsuiteburpsuite-extenderburpsuite-toolsappsecbugbountyinfosecpentesting
  Language:Python 108

• d3k4z / burp-copy-as-ffuf

  Burp Extension that copies a request and builds a FFUF skeleton

  burpburp-extensionsburpsuiteffufjython
  Language:Python 105

• dreamncn / iCrypto

  iCrypto，让所有密文全部变成明文！

  burpburp-extensionscrypto
  Language:Kotlin 93