burp-extensions

There are 49 repositories under burp-extensions topic.

Mr-xn / BurpSuite-collections
有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file
burp-extensions burp-requests burpsuite burpsuite-extender burpsuite-java burpsuite-tools burpsuite-xkeys hackbar hacktool j2eescan jar pentest-tool pentesting python-burp sendto shiro-burp sqlmap waf
Language:HTML 3079
aress31 / burpgpt
A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities, and enables running traffic-based analysis of any type.
ai burp-extensions burpsuite cybersecurity gpt openai pentesting security security-automation webapp burp-plugin burpsuite-extender gpt-3 openai-api
Language:Java 1896
API-Security / APIKit
APIKit：Discovery, Scan and Audit APIs Toolkit All In One.
burp-extensions apisec api-security api-sec
Language:Java 1711
wagiro / BurpBounty
Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the active and passive scanner by means of personalized rules through a very intuitive graphical interface.
bugbounty burp-extensions burpsuite bug-bounty vulnerability-scanner vulnerability-detection
Language:Java 1625
summitt / Nope-Proxy
TCP/UDP Non-HTTP Proxy Extension (NoPE) for Burp Suite.
appsec appsecurity burp-extensions burp-plugin burpsuite burpsuite-extender hacking mitmproxy pentesting protobuf proxy tcp tcpproxy udp websockets updproxy
Language:Java 1507
bit4woo / knife
A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅
burp burp-extensions burp-plugin burpsuite burpsuite-extender cookie hackbar header-edit http-edit knife menu u2c unicode-to-chinese update-cookie
Language:Java 1483
d3vilbug / HackBar
HackBar plugin for Burpsuite
burp burp-extensions burp-plugin burp-ui burpsuite burpsuite-extender hackbar
Language:Java 1476
inql
doyensec / inql
InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.
graphql security-scanner graphql-security api-documentation-tool security-tools security-audit burp-extensions burpsuite bugbounty bugbounty-tool penetration-testing
Language:Python 1472
whwlsfb / BurpCrypto
BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite). 支持多种加密算法或直接执行JS代码的用于爆破前端加密的BurpSuite插件
burp-extensions burp-plugin burpsuite-extender burpsuite payloads burpcrypto fuzz-testing execute-js-encryption ctf-tools ctf
Language:Java 1339
f0ng / captcha-killer-modified
captcha-killer的修改版，支持关键词识别base64编码的图片，添加免费ocr库，用于验证码爆破，适配新版Burpsuite
burp-extensions burp burp-plugin
Language:Java 1218
bit4woo / Fiora
Fiora：漏洞PoC框架Nuclei的图形版。快捷搜索PoC、一键运行Nuclei。即可作为独立程序运行，也可作为burp插件使用。
nuclei poc nuclei-gui burp-extensions fiora
Language:Java 1056
alphaSeclab / awesome-burp-suite
Awesome Burp Suite Resources. 400+ open source Burp plugins, 400+ posts and videos.
burp burp-extensions burp-suite
975
sleeyax / burp-awesome-tls
Fixes Burp Suite's poor TLS stack. Bypass WAF, spoof any browser.
burp burp-cloudflare-bypass burp-extensions burp-ja3 burp-suite burp-waf burpsuite go golang ja3 ja3-fingerprint java tls tls-fingerprint utls
Language:Java 945
c0ny1 / captcha-killer
burp验证码识别接口调用插件
burp-extensions burpsuite-extender burp-plugin captcha
Language:Java 848
hisxo / ReconAIzer
A Burp Suite extension to add OpenAI (GPT) on Burp and help you with your Bug Bounty recon to discover endpoints, params, URLs, subdomains and more!
bugbounty burp-extensions burpsuite openai openai-api gpt-4 openai-chatgpt
Language:Python 798
bit4woo / reCAPTCHA
reCAPTCHA = REcognize CAPTCHA: A Burp Suite Extender that recognize CAPTCHA and use for intruder payload 自动识别图形验证码并用于burp intruder爆破模块的插件
burp-extensions burp-plugin captcha intruder burpsuite recaptcha recognize-captcha recognizes-images
Language:Java 790
f0ng / log4j2burpscanner
CVE-2021-44228 Log4j2 BurpSuite Scanner,Customize ceye.io api or other apis,including internal networks
burp-extensions burp-plugin log4j2 log4jshell
Language:Java 776
c0ny1 / sqlmap4burp-plus-plus
sqlmap4burp++是一款兼容Windows，mac，linux多个系统平台的Burp与sqlmap联动插件
burp-extensions burpsuite-extender sqlmap
Language:Java 702
bit4woo / domain_hunter
A Burp Suite Extension that try to find all sub-domain, similar-domain and related-domain of an organization automatically! 基于流量自动收集整个企业或组织的子域名、相似域名、相关域名的burp插件
burp-extensions burp-plugin burpsuite-extender certificate certification domain-discovery domain-hunter domains https-certificate organization-domain related-domain similar-domain sitemap spider subdomain subject-alternative-name subject-name subjectaltname
Language:Java 658
Ebryx / AES-Killer
Burp Plugin to decrypt AES encrypted traffic on the fly
burpsuite aes-encryption decryptor aes-decryption burp-plugin burp-extensions burp burpsuite-extender burpsuite-tools burp-ui aes-killer burpsuite-plugin aes-encryption-key frida-script
Language:Java 629
synacktiv / HopLa
HopLa Burp Suite Extender plugin - Adds autocompletion support and useful payloads in Burp Suite
burp burp-extensions burp-plugin burp-suite burp-ui
Language:Java 591
BishopFox / GadgetProbe
Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.
burp-extensions security-tools java-deserialization pentesting pentest-tools javassist java
Language:Java 569
vaycore / OneScan
OneScan是递归目录扫描的BurpSuite插件
burp burp-extensions burp-plugin dirscan fuzz fuzz-testing
Language:Java 559
silentsignal / burp-log4shell
Log4Shell scanner for Burp Suite
burpsuite burp-extensions burp-plugin burpsuite-extender log4j2
Language:Kotlin 477
Acmesec / Sylas
新一代子域名主/被动收集工具 - Subdomain automatic/passive collection tool
burp-extensions burp-plugin burpsuite-extender burpsuite-tools scan scanner scanner-web subdomain-finder subdomain-scanner
Language:Java 474
hisxo / JSpector
A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues
burp-extensions burpsuite burpsuite-tools
Language:Python 341
1ultimat3 / BadIntent
Intercept, modify, repeat and attack Android's Binder transactions using Burp Suite
android burp-extensions pentesting mobile-security
Language:Java 321
volkandindar / agartha
a burp extension creates dynamic payloads to reveal injection flaws(LFI, RCE, SQLi), generates user access tables to spot authentication/authorization issues, and copys Http requests as JavaScript code.
penetration-testing pentesting cybersecurity burp-extensions hacking hacking-tool application-security appsec offsec burpsuite offensivesecurity
Language:Python 313
prakharathreya / Struts2-RCE
A Burp Extender for checking for struts 2 RCE vulnerabilities.
struts2-rce burp-extensions struts2
270
c0ny1 / HTTPHeadModifer
一款快速修改HTTP数据包头的Burp Suite插件
burp-extensions httphelper
Language:Java 255
vsec7 / BurpSuite-Xkeys
A Burp Suite Extension to extract interesting strings (key, secret, token, or etc.) from a webpage.
burp-extensions osint pentest-tool hacking pentesting burpsuite
Language:Python 233
bit4woo / u2c
Unicode To Chinese -- U2C : A burpsuite Extender That Convert Unicode To Chinese 【Unicode编码转中文的burp插件】
burp-extensions burp-plugin burpsuite-extender chinese unicode
Language:Java 229
P3GLEG / PwnBack
Burp Extender plugin that generates a sitemap of a website using Wayback Machine
security-tools burp burpsuite burp-extensions information-retrieval osint
Language:Java 225
d3mondev / burp-vps-proxy
This Burp Suite extension allows for the automatic creation and deletion of an upstream SOCKS5 proxy on popular cloud services.
bugbounty burp-extensions burpsuite pentesting proxy socks5
Language:Java 222
NetsOSS / headless-burp
Automate security tests using Burp Suite.
burp burp-extensions burpsuite burp-plugin maven-plugin headless continuous-security automation
Language:Java 222
codingo / Minesweeper
A Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).
burpsuite burpsuitepro burp-extensions burp-plugin web-security hacking hacking-tool web-application-hacking cryptocurrency bitcoin coinhive coinhive-miners blacklist blacklist-extension bugbounty security-audit security-tools security-scanner penetration-testing cryptojacking
Language:Python 193

burp-extensions

Mr-xn / BurpSuite-collections

aress31 / burpgpt

API-Security / APIKit

wagiro / BurpBounty

summitt / Nope-Proxy

bit4woo / knife

d3vilbug / HackBar

doyensec / inql

whwlsfb / BurpCrypto

f0ng / captcha-killer-modified

bit4woo / Fiora

alphaSeclab / awesome-burp-suite

sleeyax / burp-awesome-tls

c0ny1 / captcha-killer

hisxo / ReconAIzer

bit4woo / reCAPTCHA

f0ng / log4j2burpscanner

c0ny1 / sqlmap4burp-plus-plus

bit4woo / domain_hunter

Ebryx / AES-Killer

synacktiv / HopLa

BishopFox / GadgetProbe

vaycore / OneScan

silentsignal / burp-log4shell

Acmesec / Sylas

hisxo / JSpector

1ultimat3 / BadIntent

volkandindar / agartha

prakharathreya / Struts2-RCE

c0ny1 / HTTPHeadModifer

vsec7 / BurpSuite-Xkeys

bit4woo / u2c

P3GLEG / PwnBack

d3mondev / burp-vps-proxy

NetsOSS / headless-burp

codingo / Minesweeper