Trending repositories for topic burp-extensions

🧿 AutorizePro是一款强大越权检测 Burp 插件，通过增加 AI 辅助分析 && 进一步优化检测逻辑，大幅降低误报率，提升越权漏洞检出效率。 [ AutorizePro is a authorization enforcement detection extension for burp suite. By adding Ai-assisted analysis, it si...

Easy burp sign extension!

Burp插件，快速探测可能存在SQL注入的请求并标记，提高测试效率

captcha-killer的修改版，支持关键词识别base64编码的图片，添加免费ocr库，用于验证码爆破，适配新版Burpsuite

OneScan 是一款用于递归目录扫描的 BurpSuite 插件

autoDecoder的用法及案例，包含加解密方法、绕waf、替换参数等操作。

InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.

有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file

BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite). 支持多种加密算法或直接执行JS代码的用于爆破前端加密的BurpSuite插件

A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅

Easy burp sign extension!

🧿 AutorizePro是一款强大越权检测 Burp 插件，通过增加 AI 辅助分析 && 进一步优化检测逻辑，大幅降低误报率，提升越权漏洞检出效率。 [ AutorizePro is a authorization enforcement detection extension for burp suite. By adding Ai-assisted analysis, it si...

Burp插件，快速探测可能存在SQL注入的请求并标记，提高测试效率

autoDecoder的用法及案例，包含加解密方法、绕waf、替换参数等操作。

OneScan 是一款用于递归目录扫描的 BurpSuite 插件

captcha-killer的修改版，支持关键词识别base64编码的图片，添加免费ocr库，用于验证码爆破，适配新版Burpsuite

InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.

BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite). 支持多种加密算法或直接执行JS代码的用于爆破前端加密的BurpSuite插件

A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅

有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file

🧿 AutorizePro是一款强大越权检测 Burp 插件，通过增加 AI 辅助分析 && 进一步优化检测逻辑，大幅降低误报率，提升越权漏洞检出效率。 [ AutorizePro is a authorization enforcement detection extension for burp suite. By adding Ai-assisted analysis, it si...

Burp插件，快速探测可能存在SQL注入的请求并标记，提高测试效率

Easy burp sign extension!

BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite). 支持多种加密算法或直接执行JS代码的用于爆破前端加密的BurpSuite插件

captcha-killer的修改版，支持关键词识别base64编码的图片，添加免费ocr库，用于验证码爆破，适配新版Burpsuite

autoDecoder的用法及案例，包含加解密方法、绕waf、替换参数等操作。

OneScan 是一款用于递归目录扫描的 BurpSuite 插件

InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.

有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file

APIKit：Discovery, Scan and Audit APIs Toolkit All In One.

YesWeHack Api Extension for Burp

gRPC-Web Pentesting Suite + Burp Suite Extension

CVE-2021-44228 Log4j2 BurpSuite Scanner,Customize ceye.io api or other apis,including internal networks

Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.

Fiora：漏洞PoC框架Nuclei的图形版。快捷搜索PoC、一键运行Nuclei。即可作为独立程序运行，也可作为burp插件使用。

A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅

Easy burp sign extension!

🧿 AutorizePro是一款强大越权检测 Burp 插件，通过增加 AI 辅助分析 && 进一步优化检测逻辑，大幅降低误报率，提升越权漏洞检出效率。 [ AutorizePro is a authorization enforcement detection extension for burp suite. By adding Ai-assisted analysis, it si...

Burp插件，快速探测可能存在SQL注入的请求并标记，提高测试效率

YesWeHack Api Extension for Burp

autoDecoder的用法及案例，包含加解密方法、绕waf、替换参数等操作。

gRPC-Web Pentesting Suite + Burp Suite Extension

OneScan 是一款用于递归目录扫描的 BurpSuite 插件

BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite). 支持多种加密算法或直接执行JS代码的用于爆破前端加密的BurpSuite插件

captcha-killer的修改版，支持关键词识别base64编码的图片，添加免费ocr库，用于验证码爆破，适配新版Burpsuite

InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.

CVE-2021-44228 Log4j2 BurpSuite Scanner,Customize ceye.io api or other apis,including internal networks

Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.

APIKit：Discovery, Scan and Audit APIs Toolkit All In One.

有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file

Fiora：漏洞PoC框架Nuclei的图形版。快捷搜索PoC、一键运行Nuclei。即可作为独立程序运行，也可作为burp插件使用。

A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅

🧿 AutorizePro是一款强大越权检测 Burp 插件，通过增加 AI 辅助分析 && 进一步优化检测逻辑，大幅降低误报率，提升越权漏洞检出效率。 [ AutorizePro is a authorization enforcement detection extension for burp suite. By adding Ai-assisted analysis, it si...

Burp插件，快速探测可能存在SQL注入的请求并标记，提高测试效率

captcha-killer的修改版，支持关键词识别base64编码的图片，添加免费ocr库，用于验证码爆破，适配新版Burpsuite

Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.

APIKit：Discovery, Scan and Audit APIs Toolkit All In One.

有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file

OneScan 是一款用于递归目录扫描的 BurpSuite 插件

InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.

Easy burp sign extension!

autoDecoder的用法及案例，包含加解密方法、绕waf、替换参数等操作。

A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities and enables running traffic-based analysis of any type.

BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite). 支持多种加密算法或直接执行JS代码的用于爆破前端加密的BurpSuite插件

TCP/UDP Non-HTTP Proxy Extension (NoPE) for Burp Suite.

gRPC-Web Pentesting Suite + Burp Suite Extension

A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅

A Burp Suite extension to add OpenAI (GPT) on Burp and help you with your Bug Bounty recon to discover endpoints, params, URLs, subdomains and more!

Fiora：漏洞PoC框架Nuclei的图形版。快捷搜索PoC、一键运行Nuclei。即可作为独立程序运行，也可作为burp插件使用。

HackBar plugin for Burpsuite

CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.

Burp Suite extension for bypassing client-side encryption for pentesting and bug bounty

Easy burp sign extension!

🧿 AutorizePro是一款强大越权检测 Burp 插件，通过增加 AI 辅助分析 && 进一步优化检测逻辑，大幅降低误报率，提升越权漏洞检出效率。 [ AutorizePro is a authorization enforcement detection extension for burp suite. By adding Ai-assisted analysis, it si...

Burp插件，快速探测可能存在SQL注入的请求并标记，提高测试效率

autoDecoder的用法及案例，包含加解密方法、绕waf、替换参数等操作。

CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.

gRPC-Web Pentesting Suite + Burp Suite Extension

Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the integration of webhooks, this tool sends real-time updates wheneve...

YesWeHack Api Extension for Burp

OneScan 是一款用于递归目录扫描的 BurpSuite 插件

Burp Suite extension for bypassing client-side encryption for pentesting and bug bounty

Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.

captcha-killer的修改版，支持关键词识别base64编码的图片，添加免费ocr库，用于验证码爆破，适配新版Burpsuite

CSTC is a Burp Suite extension that allows request/response modification using a GUI analogous to CyberChef

APIKit：Discovery, Scan and Audit APIs Toolkit All In One.

Burp Suite extension to passively scan for applications revealing server error messages

InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.

有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file

A Burp Suite extension to add OpenAI (GPT) on Burp and help you with your Bug Bounty recon to discover endpoints, params, URLs, subdomains and more!

BurpSuite extension to inject custom cross-site scripting payloads on every form/request submitted to detect blind XSS vulnerabilities

A Burp Suite Extension for pentester and bug bounty hunters an to maintain checklist, map flows, write test cases and track vulnerabilities

🧿 AutorizePro是一款强大越权检测 Burp 插件，通过增加 AI 辅助分析 && 进一步优化检测逻辑，大幅降低误报率，提升越权漏洞检出效率。 [ AutorizePro is a authorization enforcement detection extension for burp suite. By adding Ai-assisted analysis, it si...

Burp插件，快速探测可能存在SQL注入的请求并标记，提高测试效率

Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the integration of webhooks, this tool sends real-time updates wheneve...

No description

A BurpSuite extension for vulnerability Scanning

Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.

有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file

captcha-killer的修改版，支持关键词识别base64编码的图片，添加免费ocr库，用于验证码爆破，适配新版Burpsuite

APIKit：Discovery, Scan and Audit APIs Toolkit All In One.

🧿 AutorizePro是一款强大越权检测 Burp 插件，通过增加 AI 辅助分析 && 进一步优化检测逻辑，大幅降低误报率，提升越权漏洞检出效率。 [ AutorizePro is a authorization enforcement detection extension for burp suite. By adding Ai-assisted analysis, it si...

A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities and enables running traffic-based analysis of any type.

OneScan 是一款用于递归目录扫描的 BurpSuite 插件

Burp插件，快速探测可能存在SQL注入的请求并标记，提高测试效率

A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅

Fiora：漏洞PoC框架Nuclei的图形版。快捷搜索PoC、一键运行Nuclei。即可作为独立程序运行，也可作为burp插件使用。

BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite). 支持多种加密算法或直接执行JS代码的用于爆破前端加密的BurpSuite插件

InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.

TCP/UDP Non-HTTP Proxy Extension (NoPE) for Burp Suite.

FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application and matches their occurrences in the responses.

HopLa Burp Suite Extender plugin - Adds autocompletion support and useful payloads in Burp Suite

HackBar plugin for Burpsuite

CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.

autoDecoder的用法及案例，包含加解密方法、绕waf、替换参数等操作。

Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the integration of webhooks, this tool sends real-time updates wheneve...

Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the active and passive scanner by means of personalized rules through...

Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the integration of webhooks, this tool sends real-time updates wheneve...

🧿 AutorizePro是一款强大越权检测 Burp 插件，通过增加 AI 辅助分析 && 进一步优化检测逻辑，大幅降低误报率，提升越权漏洞检出效率。 [ AutorizePro is a authorization enforcement detection extension for burp suite. By adding Ai-assisted analysis, it si...

FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application and matches their occurrences in the responses.

iCrypto，让所有密文全部变成明文！

Easy burp sign extension!

autoDecoder的用法及案例，包含加解密方法、绕waf、替换参数等操作。

Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.

CSTC is a Burp Suite extension that allows request/response modification using a GUI analogous to CyberChef

auto decrypt the request ciphertext and auto bypass the signature of the API. 针对数据包加密、签名保护的安全测试场景，借助burp插件自动解密数据包密文，自动绕过接口的签名保护，最后借助密文数据天然过waf的优势结合Xray等漏扫工具完成半自动的安全测试

gRPC-Web Pentesting Suite + Burp Suite Extension

OneScan 是一款用于递归目录扫描的 BurpSuite 插件

captcha-killer的修改版，支持关键词识别base64编码的图片，添加免费ocr库，用于验证码爆破，适配新版Burpsuite

A simple plugin to export JS files from one or multiple targets

APIKit：Discovery, Scan and Audit APIs Toolkit All In One.

YesWeHack Api Extension for Burp

Fiora：漏洞PoC框架Nuclei的图形版。快捷搜索PoC、一键运行Nuclei。即可作为独立程序运行，也可作为burp插件使用。

HopLa Burp Suite Extender plugin - Adds autocompletion support and useful payloads in Burp Suite

A burp suite extension that reviews backup, old, temporary and unreferenced files on web server for sensitive information (OWASP WSTG-CONF-04, OTG-CONFIG-004)

Burp Suite extension for bypassing client-side encryption for pentesting and bug bounty

Text4Shell的burp被动扫描插件