Trending repositories for topic burpsuite
HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations.
Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.
Burp插件,通过自定义hook脚本自动解密报文,让你像测试明文一样简单。A Burp plugin that automatically decrypts messages by custom hook scirpt, making it as simple as testing plaintext.
BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite). 支持多种加密算法或直接执行JS代码的用于爆破前端加密的BurpSuite插件
InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.
A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities and enables running traffic-based analysis of any type.
Roadmap for Web Application Penetration Testing | FREE Resources (Not Pirated)
BrowserBruter is a powerful web form fuzzing automation tool designed for web security professionals and penetration testers. This Python-based tool leverages Selenium and Selenium-Wire to automate we...
A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.
Roadmap for Web Application Penetration Testing | FREE Resources (Not Pirated)
Burp插件,通过自定义hook脚本自动解密报文,让你像测试明文一样简单。A Burp plugin that automatically decrypts messages by custom hook scirpt, making it as simple as testing plaintext.
BrowserBruter is a powerful web form fuzzing automation tool designed for web security professionals and penetration testers. This Python-based tool leverages Selenium and Selenium-Wire to automate we...
Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.
HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations.
BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite). 支持多种加密算法或直接执行JS代码的用于爆破前端加密的BurpSuite插件
InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.
A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities and enables running traffic-based analysis of any type.
A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.
Burp插件,通过自定义hook脚本自动解密报文,让你像测试明文一样简单。A Burp plugin that automatically decrypts messages by custom hook scirpt, making it as simple as testing plaintext.
HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations.
Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.
有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file
BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite). 支持多种加密算法或直接执行JS代码的用于爆破前端加密的BurpSuite插件
Roadmap for Web Application Penetration Testing | FREE Resources (Not Pirated)
A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅
CaA - Collector and Analyzer, Insight into information, exploring with intelligence in a thousand ways.
A tool to help you intercept encrypted APIs in iOS or Android apps
A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities and enables running traffic-based analysis of any type.
Quick python utility I wrote to turn HTTP requests from burp suite into Cobalt Strike Malleable C2 profiles
BrowserBruter is a powerful web form fuzzing automation tool designed for web security professionals and penetration testers. This Python-based tool leverages Selenium and Selenium-Wire to automate we...
Burp插件,通过自定义hook脚本自动解密报文,让你像测试明文一样简单。A Burp plugin that automatically decrypts messages by custom hook scirpt, making it as simple as testing plaintext.
Roadmap for Web Application Penetration Testing | FREE Resources (Not Pirated)
A tool to help you intercept encrypted APIs in iOS or Android apps
Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.
HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations.
Quick python utility I wrote to turn HTTP requests from burp suite into Cobalt Strike Malleable C2 profiles
CaA - Collector and Analyzer, Insight into information, exploring with intelligence in a thousand ways.
BrowserBruter is a powerful web form fuzzing automation tool designed for web security professionals and penetration testers. This Python-based tool leverages Selenium and Selenium-Wire to automate we...
BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite). 支持多种加密算法或直接执行JS代码的用于爆破前端加密的BurpSuite插件
A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅
有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file
A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities and enables running traffic-based analysis of any type.
Burp插件,通过自定义hook脚本自动解密报文,让你像测试明文一样简单。A Burp plugin that automatically decrypts messages by custom hook scirpt, making it as simple as testing plaintext.
HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations.
CaA - Collector and Analyzer, Insight into information, exploring with intelligence in a thousand ways.
Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.
有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file
BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite). 支持多种加密算法或直接执行JS代码的用于爆破前端加密的BurpSuite插件
Roadmap for Web Application Penetration Testing | FREE Resources (Not Pirated)
A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.
Complete Listing and Usage of Tools used for Ethical Hacking
A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅
Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease application security people work and allow them perform an automatic...
CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.
BrowserBruter is a powerful web form fuzzing automation tool designed for web security professionals and penetration testers. This Python-based tool leverages Selenium and Selenium-Wire to automate we...
Burp插件,通过自定义hook脚本自动解密报文,让你像测试明文一样简单。A Burp plugin that automatically decrypts messages by custom hook scirpt, making it as simple as testing plaintext.
Roadmap for Web Application Penetration Testing | FREE Resources (Not Pirated)
CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.
CaA - Collector and Analyzer, Insight into information, exploring with intelligence in a thousand ways.
TangGo测试平台是无糖信息技术有限公司集多年渗透测试实战经验设计和开发的国产化综合性测试平台,为软件测试、网络安全从业人员提供强大且易用的测试工具及多人协同的工作环境,主要用于Web站点的功能测试、安全测试和安全评估。
BrowserBruter is a powerful web form fuzzing automation tool designed for web security professionals and penetration testers. This Python-based tool leverages Selenium and Selenium-Wire to automate we...
A tool to help you intercept encrypted APIs in iOS or Android apps
Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.
OWASP VulnerableApp Project: For Security Enthusiasts by Security Enthusiasts.
HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations.
Cervantes is an open-source, collaborative platform designed specifically for pentesters and red teams. It serves as a comprehensive management tool, streamlining the organization of projects, clients...
Jasmin Ransomware is an advanced red team tool (WannaCry Clone) used for simulating real ransomware attacks. Jasmin helps security researchers to overcome the risk of external attacks.
Burp Suite extension for bypassing client-side encryption for pentesting and bug bounty
BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite). 支持多种加密算法或直接执行JS代码的用于爆破前端加密的BurpSuite插件
Burp插件,通过自定义hook脚本自动解密报文,让你像测试明文一样简单。A Burp plugin that automatically decrypts messages by custom hook scirpt, making it as simple as testing plaintext.
This repository stores some of my custom BCheck Scan configurations. Its goal is to identify intriguing elements that warrant further manual testing.
CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.
Converting your Burp Suite projects into JSON APIs which can be viewed with Swagger editor or imported into Postman.
A simple plugin to export JS files from one or multiple targets
TangGo测试平台是无糖信息技术有限公司集多年渗透测试实战经验设计和开发的国产化综合性测试平台,为软件测试、网络安全从业人员提供强大且易用的测试工具及多人协同的工作环境,主要用于Web站点的功能测试、安全测试和安全评估。
HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations.
Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.
有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file
Burp插件,通过自定义hook脚本自动解密报文,让你像测试明文一样简单。A Burp plugin that automatically decrypts messages by custom hook scirpt, making it as simple as testing plaintext.
CaA - Collector and Analyzer, Insight into information, exploring with intelligence in a thousand ways.
A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities and enables running traffic-based analysis of any type.
Complete Listing and Usage of Tools used for Ethical Hacking
A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅
BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite). 支持多种加密算法或直接执行JS代码的用于爆破前端加密的BurpSuite插件
A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.
BrowserBruter is a powerful web form fuzzing automation tool designed for web security professionals and penetration testers. This Python-based tool leverages Selenium and Selenium-Wire to automate we...
Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease application security people work and allow them perform an automatic...
InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.
Roadmap for Web Application Penetration Testing | FREE Resources (Not Pirated)
FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application and matches their occurrences in the responses.
Get Burp Suite Professional for Free on || https://sites.google.com/view/pentesting-club/home
FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application and matches their occurrences in the responses.
This repository stores some of my custom BCheck Scan configurations. Its goal is to identify intriguing elements that warrant further manual testing.
Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.
Here are some of the most important cyber security tools.
Converting your Burp Suite projects into JSON APIs which can be viewed with Swagger editor or imported into Postman.
Writeups for PortSwigger WebSecurity Academy
Auto-Recon script that will help you in the Burp Suite Certified Practitioner Examor with any web-security lab.
A tool to help you intercept encrypted APIs in iOS or Android apps
A simple plugin to export JS files from one or multiple targets
auto decrypt the request ciphertext and auto bypass the signature of the API. 针对数据包加密、签名保护的安全测试场景,借助burp插件自动解密数据包密文,自动绕过接口的签名保护,最后借助密文数据天然过waf的优势结合Xray等漏扫工具完成半自动的安全测试
CaA - Collector and Analyzer, Insight into information, exploring with intelligence in a thousand ways.
This extension enhances Burp Suite by adding several UI and functional features, making it more user-friendly.
CSTC is a Burp Suite extension that allows request/response modification using a GUI analogous to CyberChef
Jasmin Ransomware is an advanced red team tool (WannaCry Clone) used for simulating real ransomware attacks. Jasmin helps security researchers to overcome the risk of external attacks.
Bypass Instagram SSL pinning on iOS devices. Latest version Instagram v342.0.0
A script for installing private Burp Collaborator with free Let's Encrypt SSL-certificate