Trending repositories for topic burpsuite
HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations.
A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities, and enables running traffic-based analysis of any type.
有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file
BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite). 支持多种加密算法或直接执行JS代码的用于爆破前端加密的BurpSuite插件
A tool to help you intercept encrypted APIs in iOS or Android apps
Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.
Complete Listing and Usage of Tools used for Ethical Hacking
BrowserBruter is a powerful web form fuzzing automation tool designed for web security professionals and penetration testers. This Python-based tool leverages Selenium and Selenium-Wire to automate we...
Get Burp Suite Professional for Free on || https://sites.google.com/view/pentesting-club/home
A bash and powershell script to download the latest version of Burp-Suite Professional and use it for free.
CaA - Collector and Analyzer, Insight into information, exploring with intelligence in a thousand ways.
A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅
Get Burp Suite Professional for Free on || https://sites.google.com/view/pentesting-club/home
BrowserBruter is a powerful web form fuzzing automation tool designed for web security professionals and penetration testers. This Python-based tool leverages Selenium and Selenium-Wire to automate we...
A tool to help you intercept encrypted APIs in iOS or Android apps
A bash and powershell script to download the latest version of Burp-Suite Professional and use it for free.
HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations.
A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities, and enables running traffic-based analysis of any type.
BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite). 支持多种加密算法或直接执行JS代码的用于爆破前端加密的BurpSuite插件
Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.
CaA - Collector and Analyzer, Insight into information, exploring with intelligence in a thousand ways.
Complete Listing and Usage of Tools used for Ethical Hacking
有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file
A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅
HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations.
A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities, and enables running traffic-based analysis of any type.
有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file
Complete Listing and Usage of Tools used for Ethical Hacking
Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.
BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite). 支持多种加密算法或直接执行JS代码的用于爆破前端加密的BurpSuite插件
CSTC is a Burp Suite extension that allows request/response modification using a GUI analogous to CyberChef
A tool to help you intercept encrypted APIs in iOS or Android apps
CaA - Collector and Analyzer, Insight into information, exploring with intelligence in a thousand ways.
A bash and powershell script to download the latest version of Burp-Suite Professional and use it for free.
Extension for Burp Suite which uses AWS API Gateway to rotate your IP on every request.
Jasmin Ransomware is an advanced red team tool (WannaCry Clone) used for simulating real ransomware attacks. Jasmin helps security researchers to overcome the risk of external attacks.
A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅
Get Burp Suite Professional for Free on || https://sites.google.com/view/pentesting-club/home
CSTC is a Burp Suite extension that allows request/response modification using a GUI analogous to CyberChef
A tool to help you intercept encrypted APIs in iOS or Android apps
Get Burp Suite Professional for Free on || https://sites.google.com/view/pentesting-club/home
BrowserBruter is a powerful web form fuzzing automation tool designed for web security professionals and penetration testers. This Python-based tool leverages Selenium and Selenium-Wire to automate we...
A bash and powershell script to download the latest version of Burp-Suite Professional and use it for free.
Jasmin Ransomware is an advanced red team tool (WannaCry Clone) used for simulating real ransomware attacks. Jasmin helps security researchers to overcome the risk of external attacks.
Burp Extension that copies a request and builds a FFUF skeleton
Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.
HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations.
CaA - Collector and Analyzer, Insight into information, exploring with intelligence in a thousand ways.
Complete Listing and Usage of Tools used for Ethical Hacking
Writeups for PortSwigger WebSecurity Academy
A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities, and enables running traffic-based analysis of any type.
Script to Automate installtion of Apps ,frida server and moving Burpsuite certificate to root folder
Burp插件,Malleable C2 Profiles生成器;可以通过Burp代理选中请求,生成Cobalt Strike的profile文件(CSprofile)
Extension for Burp Suite which uses AWS API Gateway to rotate your IP on every request.
Cervantes is an open-source, collaborative platform designed specifically for pentesters and red teams. It serves as a comprehensive management tool, streamlining the organization of projects, clients...
BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite). 支持多种加密算法或直接执行JS代码的用于爆破前端加密的BurpSuite插件
HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations.
CaA - Collector and Analyzer, Insight into information, exploring with intelligence in a thousand ways.
有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file
CSTC is a Burp Suite extension that allows request/response modification using a GUI analogous to CyberChef
Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.
Complete Listing and Usage of Tools used for Ethical Hacking
A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities, and enables running traffic-based analysis of any type.
A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅
BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite). 支持多种加密算法或直接执行JS代码的用于爆破前端加密的BurpSuite插件
A bash and powershell script to download the latest version of Burp-Suite Professional and use it for free.
InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.
FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application and matches their occurrences in the responses.
Burp插件,Malleable C2 Profiles生成器;可以通过Burp代理选中请求,生成Cobalt Strike的profile文件(CSprofile)
A tool to help you intercept encrypted APIs in iOS or Android apps
Writeups for PortSwigger WebSecurity Academy
CSTC is a Burp Suite extension that allows request/response modification using a GUI analogous to CyberChef
Roadmap for Web Application Penetration Testing | FREE Resources (Not Pirated)
FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application and matches their occurrences in the responses.
CaA - Collector and Analyzer, Insight into information, exploring with intelligence in a thousand ways.
A bash and powershell script to download the latest version of Burp-Suite Professional and use it for free.
Get Burp Suite Professional for Free on || https://sites.google.com/view/pentesting-club/home
BrowserBruter is a powerful web form fuzzing automation tool designed for web security professionals and penetration testers. This Python-based tool leverages Selenium and Selenium-Wire to automate we...
A tool to help you intercept encrypted APIs in iOS or Android apps
Here are some of the most important cyber security tools.
Burp插件,Malleable C2 Profiles生成器;可以通过Burp代理选中请求,生成Cobalt Strike的profile文件(CSprofile)
Writeups for PortSwigger WebSecurity Academy
Jasmin Ransomware is an advanced red team tool (WannaCry Clone) used for simulating real ransomware attacks. Jasmin helps security researchers to overcome the risk of external attacks.
A compact guide to network pivoting for penetration testings / CTF challenges.
Cervantes is an open-source, collaborative platform designed specifically for pentesters and red teams. It serves as a comprehensive management tool, streamlining the organization of projects, clients...
Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.
This extension enhances Burp Suite by adding several UI and functional features, making it more user-friendly.
HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations.
Complete Listing and Usage of Tools used for Ethical Hacking
This repository stores some of my custom BCheck Scan configurations. Its goal is to identify intriguing elements that warrant further manual testing.
FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application and matches their occurrences in the responses.
A BurpSuite extension to create a custom word-list of endpoint and parameters for enumeration and fuzzing
This repository stores some of my custom BCheck Scan configurations. Its goal is to identify intriguing elements that warrant further manual testing.
Get Burp Suite Professional for Free on || https://sites.google.com/view/pentesting-club/home
Roadmap for Web Application Penetration Testing | FREE Resources (Not Pirated)
This extension enhances Burp Suite by adding several UI and functional features, making it more user-friendly.
Converting your Burp Suite projects into JSON APIs which can be viewed with Swagger editor or imported into Postman.
A simple plugin to export JS files from one or multiple targets
auto decrypt the request ciphertext and auto bypass the signature of the API. 针对数据包加密、签名保护的安全测试场景,借助burp插件自动解密数据包密文,自动绕过接口的签名保护,最后借助密文数据天然过waf的优势结合Xray等漏扫工具完成半自动的安全测试
HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations.
Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.
有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file
A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities, and enables running traffic-based analysis of any type.
Complete Listing and Usage of Tools used for Ethical Hacking
InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.
A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅
BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite). 支持多种加密算法或直接执行JS代码的用于爆破前端加密的BurpSuite插件
A bash and powershell script to download the latest version of Burp-Suite Professional and use it for free.
CaA - Collector and Analyzer, Insight into information, exploring with intelligence in a thousand ways.
Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease application security people work and allow them perform an automatic...
A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.
A Burp Suite extension to add OpenAI (GPT) on Burp and help you with your Bug Bounty recon to discover endpoints, params, URLs, subdomains and more!
FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application and matches their occurrences in the responses.
BrowserBruter is a powerful web form fuzzing automation tool designed for web security professionals and penetration testers. This Python-based tool leverages Selenium and Selenium-Wire to automate we...
A BurpSuite extension to create a custom word-list of endpoint and parameters for enumeration and fuzzing
A bash and powershell script to download the latest version of Burp-Suite Professional and use it for free.
This repository stores some of my custom BCheck Scan configurations. Its goal is to identify intriguing elements that warrant further manual testing.
Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.
Bypass Instagram SSL pinning on iOS devices. Latest version Instagram 289.1
Converting your Burp Suite projects into JSON APIs which can be viewed with Swagger editor or imported into Postman.
Writeups for PortSwigger WebSecurity Academy
A Burp Suite Extension for pentester and bug bounty hunters an to maintain checklist, map flows, write test cases and track vulnerabilities
A tool to help you intercept encrypted APIs in iOS or Android apps
A simple plugin to export JS files from one or multiple targets
Burp extension to check and exploit the IIS Tilde Enumeration/IIS 8.3 Short Filename Disclosure vulnerability
Burp HTTP history browser (BHHB) - A tool to view HTTP history exported from Burp Suite Community Edition
Jasmin Ransomware is an advanced red team tool (WannaCry Clone) used for simulating real ransomware attacks. Jasmin helps security researchers to overcome the risk of external attacks.
A burp suite extension that reviews backup, old, temporary and unreferenced files on web server for sensitive information (OWASP WSTG-CONF-04, OTG-CONFIG-004)
A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues
CaA - Collector and Analyzer, Insight into information, exploring with intelligence in a thousand ways.
A script for installing private Burp Collaborator with free Let's Encrypt SSL-certificate
CSTC is a Burp Suite extension that allows request/response modification using a GUI analogous to CyberChef