Awesome Open Source
Search
Programming Languages
Languages
All Categories
Categories
About
Search results for burpsuite
burpsuite
x
274 search results found
Dataextractor
⭐
91
A Burp Suite extension to extract datas from source code while browsing.
Unexpected_information
⭐
90
Unexpected information Extensions
Ghazi
⭐
89
Ghazi is a BurpSuite Plugins For Testing various PayLoads Like "XSS,SQLi,SSTI,SSRF,RCE and LFI" through Different tabs , Where Each Tab Will Replace Every GET or POST Parameters With Selected TAB in "Proxy" or "Repeater" TAB
Flowmate
⭐
86
FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application and matches their occurrences in the responses.
Studyhacker
⭐
82
总结Android逆向入门成长必备技能
Gitlab Ssrf Redis Rce
⭐
82
GitLab 11.4.7 SSRF配合redis远程执行代码
Pbscan
⭐
78
基于burpsuite headless 的代理式被动扫描系统
Burplugin Java Rce
⭐
78
******本软件仅限用于学习交流禁止用于任何非法行为****** 本版本支持elasticsearch java语言远程命令执行及文件上传 elasticsearchgroov语言远程命令执行及文件上传 struts2-005、struts2-009、struts2-013、struts2-016、st struts2-032、struts2-033、struts2-037、struts2-045、st 除struts2-053全部RCE漏洞验证并支持批量验证。 Struts2漏洞验证需要python环境并需要相关类库支持.点击python按钮初始化初始化pyt 如果初始化失败请按照如下步骤安装类库, 1、执行 $[python]/Scrips/easy_install pip 2、requests模块 安装方法 pip install requests 3、termcolor模块安装方法: pip install termcolor github
Sqli Query Tampering
⭐
74
SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibility of manual testing with many powerful evasion techniques.
Pentest Pivoting
⭐
71
A compact guide to network pivoting for penetration testings / CTF challenges.
Un1kfiles
⭐
67
适用于burpsuite渗透工具的多类型恶意文件代码、漏洞测试payload、脚本代码快速获取复制的
Solr_rce
⭐
67
Apache Solr RCE via Velocity template
Bookmarks
⭐
64
A Burp Suite Extension to take back your repeater tabs
Portswigger Websecurity Academy
⭐
63
Writeups for PortSwigger WebSecurity Academy
Caidao Aes Version
⭐
63
一个Burp插件,实现用AES算法透明加密原版菜刀Caidao.exe与服务器端交互的http数据流
Cve 2019 6340
⭐
62
Drupal8's REST RCE, SA-CORE-2019-003, CVE-2019-6340
Burp Suite Error Message Checks
⭐
60
Burp Suite extension to passively scan for applications revealing server error messages
Bbprofiles
⭐
60
Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that improve an active and passive scanner by yourself. This extension requires Burp Suite Pro.
Httptools
⭐
59
httptools helps you to capture, repeat and live intercept HTTP requests with scripting capabilities. It is built on top of mitmproxy
Testdeck
⭐
58
Testdeck is a framework for integration, end-to-end (E2E), and security testing of gRPC microservices written in Golang.
Integrated Security Testing Environment
⭐
58
Integrated Security Testing Environment for Web Applications as Burp Extension.
Xss Sql Fuzz
⭐
58
burpsuite 插件对GP所有参数(过滤特殊参数)一键自动添加xss sql payload 进行fuzz
Gurp
⭐
57
Burp Commander written in Go
Spechtliteconf
⭐
53
Generate configure file for SpechtLite(https://goo.gl/Y4iz0a)
Lazycsrf
⭐
52
A more useful CSRF PoC generator on Burp Suite
Report Ng
⭐
51
Generate MS Word template-based reports with HP WebInspect / Burp Suite Pro input, own custom data and knowledge base.
Customcrypto
⭐
49
Burp自定义加解密插件
Burpsuitepro 1.7.37 And 2022.8.5 Cracked
⭐
49
Batch file to launch activated BurpSuit in Windows 10/ 11
Justc2file
⭐
49
Burp插件,Malleable C2 Profiles生成器;可以通过Burp代理选中请求,生成Cobalt Strike的profile文件(CSprofile)
Burpsuite Macos
⭐
49
Build a MacOS .app wrapper for a user provided burpsuite jar
Bearerauthtoken
⭐
47
This burpsuite extender provides a solution on testing Enterprise applications that involve security Authorization tokens into every HTTP requests.Furthermore, this solution provides a better approach to solve the problem of Burp suite automated scanning failures when Authorization tokens exist.
Webtech
⭐
46
Identify the technologies used on websites. (Dig-deep into web tech from your terminal)
Docker_burp
⭐
46
Burp Pro as a Docker Container
Xxl Job
⭐
45
xxl-job RESTful API RCE
Flarequench
⭐
44
Burp Suite plugin that adds additional checks to the passive scanner to reveal the origin IP(s) of Cloudflare-protected web applications.
Similar Request Excluder
⭐
42
A Burp Suite extension that automatically marks similar requests as 'out-of-scope'.
Eslinter
⭐
42
Manual JavaScript Linting is a Bug
Burpsuite_pro_v1.7.37
⭐
40
Burpcontextawarefuzzer
⭐
38
BurpSuite's payload-generation extension aiming at applying fuzzed test-cases depending on the type of payload (integer, string, path; JSON; XML; GWT; binary) and following encoding-scheme applied originally.
Burpsuite Xkeys
⭐
38
A Burp Suite Extension to extract interesting strings (key, secret, token, or etc.) from a webpage.
Turbodataminer
⭐
37
The objective of this Burp Suite extension is the flexible and dynamic extraction, correlation, and structured presentation of information from the Burp Suite project as well as the flexible and dynamic on-the-fly modification of outgoing or incoming HTTP requests using Python scripts. Thus, Turbo Data Miner shall aid in gaining a better and faster understanding of the data collected by Burp Suite.
Testing_wave
⭐
37
Blindpie
⭐
37
Automatically exploit time-based blind SQL injection vulnerabilities.
Burp Flow
⭐
36
Extension providing view with filtering capabilities for both complete and incomplete requests from all burp tools.
2019mst Opensourcelists
⭐
36
米斯特2019年开源项目清单
Burp Convisoplatform
⭐
36
The extension of Burp Suite for Conviso Platform aims to serve as an integration between them, making the life of an analyst easier, because he can now send vulnerabilities directly from Burp to the platform.
Hakoniwabadstore
⭐
36
箱庭BadStore
Poi Slinger
⭐
36
Automatically identify serialization issues in PHP Frameworks by means of an Burp Suite active scan
Burpsuitesharpenerex
⭐
35
This extension enhances Burp Suite by adding several UI and functional features, making it more user-friendly.
Burp Suite Pro
⭐
33
Get Burp Suite Professional for Free on || https://sites.google.com/view/pentesting-club/home
Burp Iistildeenumerationscanner
⭐
32
Burp extension to check and exploit the IIS Tilde Enumeration/IIS 8.3 Short Filename Disclosure vulnerability
Burp Extensions
⭐
30
Automatically exported from code.google.com/p/burp-extensions
Burp Plugin
⭐
30
A Burp plugin to export findings to DefectDojo
Cve 2019 15642
⭐
29
Webmin Remote Code Execution (authenticated)
Csrf Poc Creator
⭐
29
A Burp Suite extension for CSRF proof of concepts.
Burpsqltruncsanner
⭐
29
Messy BurpSuite plugin for SQL Truncation vulnerabilities.
Burpsuite
⭐
29
BurpSuite Pro, Plugins and Payloads
Burp Suite Software Version Checks
⭐
29
Burp extension to passively scan for applications revealing software version numbers
Hackthebox Exploits
⭐
28
Custom exploits that I made for Hack The Box machines!
Burpsuite101
⭐
27
Set up your own BurpSuite
Google Authenticator
⭐
26
Burp Suite plugin that dynamically generates Google 2FA codes for use in session handling rules (approved by PortSwigger for inclusion in their official BApp Store).
Weaponize Your Burp
⭐
26
Weaponize Your Burp is a repository for automation your Bug Bounty Hunting mindset in Burp Suite
Graphql_beautifier
⭐
26
Burp Suite extension to help make Graphql request more readable
Burp Suite Jsonpath
⭐
26
JSONPath extension for BurpSuite
Burp_suite_extension_ruby
⭐
26
BurpSuite Extension Ruby Template to speed up building a Burp Extension using Ruby
Burpsuite_payloads
⭐
26
Payloads to be used with Burp Suite Intruder. (Originally found on swisskeyrepo-PayloadsAllTheThings)
Burptoggle
⭐
25
Burp Suite Proxy Toggler Lite Add-on for Mozilla Firefox. https://addons.mozilla.org/en-US/firefox/addon/bur
Burpsuite
⭐
25
Burp Suite Professional 2023.*. * Loader Updated (with 2 loaders to choose from)
Burpsuiteteamserver
⭐
25
This is the Go Server that relays all HTTP requests and responses between clients.
Burp Extension
⭐
25
A BurpSuite extension for lair
Burp Sensitive Param Extractor
⭐
25
burpsuite extension for check and extract sensitive request parameter
Bittraversal
⭐
24
Burpsuite Plugin to detect Directory Traversal vulnerabilities
Burp Wildcard
⭐
24
Burp extension intended to compact Burp extension tabs by hijacking them to own tab.
Gadget Injector
⭐
24
gadget-inejctor let's you bypass SSL Pinning using the frida-gadget.
Burpextender
⭐
24
Burp suite 的插件集合
Burpsuite Extensions
⭐
23
A collection of Burp Suite extensions
Burp Info Extractor
⭐
23
burpsuite extension for extract information from data
Palm Kit Desktop
⭐
22
发布 palm-kit 桌面版
Flutter Ssl Bypass
⭐
22
Flutter SSL pinning bypass using IP forwarding
Bscp
⭐
21
This repository contains BSCP Methodology and different information about the Burp Suite Certified Practitioner extracted from practice exam & academy labs. Feel free to contribute with a pull requests ;)
Burp Suite Utils
⭐
21
Utilities for creating Burp Suite Extensions.
Burpsuite Collections
⭐
20
BurpSuite收集:包括不限于 Burp 文章、破解版、插件(非BApp Store)、汉化等相关教程,欢迎添砖加瓦---burpsuite-pro burpsuite-extender burpsuite cracked-version hackbar hacktools fuzzing fuzz-testing burp-plugin burp-extensions bapp-store brute-force-attacks brute-force-passwords waf sqlmap jar
Hydrogen
⭐
20
🎭 An Elegant CTF-Tools Framework.
Yaguraextender
⭐
20
Burpsuite extension. Supports CJK (Chinese, Japanese, Korean) encoding.
Belle
⭐
19
Belle (Burp Suite 非公式日本語化ツール)
Ios Instagram Ssl Pinning Bypass
⭐
19
Bypass Instagram SSL pinning on iOS devices. Latest version Instagram 289.1
Toriprotate
⭐
18
Simple burp extension for routing traffic over tor. It instruments tor to switch to a new circuit after every N requests.
Bradamsa Ng
⭐
17
Burp Suite extension for Radamsa-powered fuzzing with Intruder
Serialization
⭐
16
Extender module for BurpSuite to decode and re-encode JAVA Object Serialization for security testing
Bypasssuper
⭐
16
Bypass 403 or 401 or 404
Burpsuite Extensions
⭐
15
BurpSuite Pro Python Extension
Burp Suite Professional Latest Version
⭐
15
Activate Burp Suite Pro with Key-Generator and Key-Loader
Phpstudy Backdoor
⭐
15
phpstudy dll backdoor for v2016 and v2018
Androset
⭐
15
Automated script to convert and push Burp Suite certificate in Android, and modify Android's IP table to redirect all traffic to Burp Suite.
Jasmin Ransomware
⭐
14
Jasmin Ransomware is an advanced red team tool (WannaCry Clone) used for simulating real ransomware attacks. Jasmin helps security researchers to overcome the risk of external attacks.
Web Penetration Testing With Kali Linux Third Edition
⭐
14
Web Penetration Testing with Kali Linux - Third Edition, published by Packt
Jboss_jmxinvokerservlet_deserialization_rce
⭐
14
Jboss_JMXInvokerServlet_Deserialization_RCE
Cve 2019 3394
⭐
14
Confluence(<install-directory>/confluence/WEB-INF/
Burp Dump
⭐
14
A Burp plugin to dump HTTP(S) requests/responses to a file system
Burpcndoc
⭐
14
burpsuite doc in chinese
101-200 of 274 search results
< Previous
Next >
Privacy
|
About
|
Terms
|
Follow Us On Twitter
Copyright 2018-2024 Awesome Open Source. All rights reserved.