Trending repositories for topic burpsuite

HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations.

Open Source Vulnerability Management Platform

Cyber Security ALL-IN-ONE Platform

A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities, and enables running traffic-based analysis of any type.

有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file

BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite). 支持多种加密算法或直接执行JS代码的用于爆破前端加密的BurpSuite插件

A tool to help you intercept encrypted APIs in iOS or Android apps

Automated HTTP Request Repeating With Burp Suite

Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.

Complete Listing and Usage of Tools used for Ethical Hacking

BrowserBruter is a powerful web form fuzzing automation tool designed for web security professionals and penetration testers. This Python-based tool leverages Selenium and Selenium-Wire to automate we...

Burp proxy flutter apps

Get Burp Suite Professional for Free on || https://sites.google.com/view/pentesting-club/home

A bash and powershell script to download the latest version of Burp-Suite Professional and use it for free.

CaA - Collector and Analyzer, Insight into information, exploring with intelligence in a thousand ways.

A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅

Burp proxy flutter apps

Get Burp Suite Professional for Free on || https://sites.google.com/view/pentesting-club/home

BrowserBruter is a powerful web form fuzzing automation tool designed for web security professionals and penetration testers. This Python-based tool leverages Selenium and Selenium-Wire to automate we...

A tool to help you intercept encrypted APIs in iOS or Android apps

A bash and powershell script to download the latest version of Burp-Suite Professional and use it for free.

HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations.

A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities, and enables running traffic-based analysis of any type.

Automated HTTP Request Repeating With Burp Suite

BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite). 支持多种加密算法或直接执行JS代码的用于爆破前端加密的BurpSuite插件

Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.

CaA - Collector and Analyzer, Insight into information, exploring with intelligence in a thousand ways.

Open Source Vulnerability Management Platform

Complete Listing and Usage of Tools used for Ethical Hacking

有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file

Cyber Security ALL-IN-ONE Platform

A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅

HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations.

Cyber Security ALL-IN-ONE Platform

Open Source Vulnerability Management Platform

A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities, and enables running traffic-based analysis of any type.

有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file

Complete Listing and Usage of Tools used for Ethical Hacking

Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.

BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite). 支持多种加密算法或直接执行JS代码的用于爆破前端加密的BurpSuite插件

CSTC is a Burp Suite extension that allows request/response modification using a GUI analogous to CyberChef

A tool to help you intercept encrypted APIs in iOS or Android apps

CaA - Collector and Analyzer, Insight into information, exploring with intelligence in a thousand ways.

No description

A bash and powershell script to download the latest version of Burp-Suite Professional and use it for free.

Extension for Burp Suite which uses AWS API Gateway to rotate your IP on every request.

Burp proxy flutter apps

Jasmin Ransomware is an advanced red team tool (WannaCry Clone) used for simulating real ransomware attacks. Jasmin helps security researchers to overcome the risk of external attacks.

Automated HTTP Request Repeating With Burp Suite

HackBar plugin for Burpsuite

A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅

Get Burp Suite Professional for Free on || https://sites.google.com/view/pentesting-club/home

Burp proxy flutter apps

No description

CSTC is a Burp Suite extension that allows request/response modification using a GUI analogous to CyberChef

A tool to help you intercept encrypted APIs in iOS or Android apps

Get Burp Suite Professional for Free on || https://sites.google.com/view/pentesting-club/home

BrowserBruter is a powerful web form fuzzing automation tool designed for web security professionals and penetration testers. This Python-based tool leverages Selenium and Selenium-Wire to automate we...

A bash and powershell script to download the latest version of Burp-Suite Professional and use it for free.

Jasmin Ransomware is an advanced red team tool (WannaCry Clone) used for simulating real ransomware attacks. Jasmin helps security researchers to overcome the risk of external attacks.

Burp Extension that copies a request and builds a FFUF skeleton

Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.

HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations.

CaA - Collector and Analyzer, Insight into information, exploring with intelligence in a thousand ways.

Complete Listing and Usage of Tools used for Ethical Hacking

Writeups for PortSwigger WebSecurity Academy

A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities, and enables running traffic-based analysis of any type.

Script to Automate installtion of Apps ,frida server and moving Burpsuite certificate to root folder

Burp插件，Malleable C2 Profiles生成器；可以通过Burp代理选中请求，生成Cobalt Strike的profile文件(CSprofile)

Extension for Burp Suite which uses AWS API Gateway to rotate your IP on every request.

Cervantes is an open-source, collaborative platform designed specifically for pentesters and red teams. It serves as a comprehensive management tool, streamlining the organization of projects, clients...

BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite). 支持多种加密算法或直接执行JS代码的用于爆破前端加密的BurpSuite插件

No description

Burp proxy flutter apps

Cyber Security ALL-IN-ONE Platform

HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations.

CaA - Collector and Analyzer, Insight into information, exploring with intelligence in a thousand ways.

有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file

No description

CSTC is a Burp Suite extension that allows request/response modification using a GUI analogous to CyberChef

Open Source Vulnerability Management Platform

Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.

Complete Listing and Usage of Tools used for Ethical Hacking

Burp proxy flutter apps

A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities, and enables running traffic-based analysis of any type.

A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅

BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite). 支持多种加密算法或直接执行JS代码的用于爆破前端加密的BurpSuite插件

A bash and powershell script to download the latest version of Burp-Suite Professional and use it for free.

InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.

FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application and matches their occurrences in the responses.

Burp插件，Malleable C2 Profiles生成器；可以通过Burp代理选中请求，生成Cobalt Strike的profile文件(CSprofile)

A tool to help you intercept encrypted APIs in iOS or Android apps

Writeups for PortSwigger WebSecurity Academy

HackBar plugin for Burpsuite

CSTC is a Burp Suite extension that allows request/response modification using a GUI analogous to CyberChef

Roadmap for Web Application Penetration Testing | FREE Resources (Not Pirated)

Scripts to set up your own Android 📱 app hacking lab

FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application and matches their occurrences in the responses.

CaA - Collector and Analyzer, Insight into information, exploring with intelligence in a thousand ways.

A bash and powershell script to download the latest version of Burp-Suite Professional and use it for free.

Get Burp Suite Professional for Free on || https://sites.google.com/view/pentesting-club/home

BrowserBruter is a powerful web form fuzzing automation tool designed for web security professionals and penetration testers. This Python-based tool leverages Selenium and Selenium-Wire to automate we...

A tool to help you intercept encrypted APIs in iOS or Android apps

Here are some of the most important cyber security tools.

Burp插件，Malleable C2 Profiles生成器；可以通过Burp代理选中请求，生成Cobalt Strike的profile文件(CSprofile)

Writeups for PortSwigger WebSecurity Academy

Jasmin Ransomware is an advanced red team tool (WannaCry Clone) used for simulating real ransomware attacks. Jasmin helps security researchers to overcome the risk of external attacks.

A compact guide to network pivoting for penetration testings / CTF challenges.

Cervantes is an open-source, collaborative platform designed specifically for pentesters and red teams. It serves as a comprehensive management tool, streamlining the organization of projects, clients...

Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.

This extension enhances Burp Suite by adding several UI and functional features, making it more user-friendly.

HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations.

Complete Listing and Usage of Tools used for Ethical Hacking

This repository stores some of my custom BCheck Scan configurations. Its goal is to identify intriguing elements that warrant further manual testing.

FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application and matches their occurrences in the responses.

A BurpSuite extension to create a custom word-list of endpoint and parameters for enumeration and fuzzing

gRPC-Web Pentesting Suite + Burp Suite Extension

This repository stores some of my custom BCheck Scan configurations. Its goal is to identify intriguing elements that warrant further manual testing.

Get Burp Suite Professional for Free on || https://sites.google.com/view/pentesting-club/home

Roadmap for Web Application Penetration Testing | FREE Resources (Not Pirated)

Scripts to set up your own Android 📱 app hacking lab

This extension enhances Burp Suite by adding several UI and functional features, making it more user-friendly.

No description

Converting your Burp Suite projects into JSON APIs which can be viewed with Swagger editor or imported into Postman.

A simple plugin to export JS files from one or multiple targets

auto decrypt the request ciphertext and auto bypass the signature of the API. 针对数据包加密、签名保护的安全测试场景，借助burp插件自动解密数据包密文，自动绕过接口的签名保护，最后借助密文数据天然过waf的优势结合Xray等漏扫工具完成半自动的安全测试

Burp proxy flutter apps

Cyber Security ALL-IN-ONE Platform

HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations.

Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.

Open Source Vulnerability Management Platform

有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file

A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities, and enables running traffic-based analysis of any type.

Complete Listing and Usage of Tools used for Ethical Hacking

InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.

A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅

BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite). 支持多种加密算法或直接执行JS代码的用于爆破前端加密的BurpSuite插件

A bash and powershell script to download the latest version of Burp-Suite Professional and use it for free.

CaA - Collector and Analyzer, Insight into information, exploring with intelligence in a thousand ways.

承影 - 一款安全工具箱,集成了目录扫描、JWT、Swagger 测试、编/解码、轻量级 BurpSuite、杀软辅助功能

Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease application security people work and allow them perform an automatic...

A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.

A Burp Suite extension to add OpenAI (GPT) on Burp and help you with your Bug Bounty recon to discover endpoints, params, URLs, subdomains and more!

No description

TCP/UDP Non-HTTP Proxy Extension (NoPE) for Burp Suite.

FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application and matches their occurrences in the responses.

BrowserBruter is a powerful web form fuzzing automation tool designed for web security professionals and penetration testers. This Python-based tool leverages Selenium and Selenium-Wire to automate we...

A BurpSuite extension to create a custom word-list of endpoint and parameters for enumeration and fuzzing

A bash and powershell script to download the latest version of Burp-Suite Professional and use it for free.

Scripts to set up your own Android 📱 app hacking lab

This repository stores some of my custom BCheck Scan configurations. Its goal is to identify intriguing elements that warrant further manual testing.

承影 - 一款安全工具箱,集成了目录扫描、JWT、Swagger 测试、编/解码、轻量级 BurpSuite、杀软辅助功能

Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.

Bypass Instagram SSL pinning on iOS devices. Latest version Instagram 289.1

Converting your Burp Suite projects into JSON APIs which can be viewed with Swagger editor or imported into Postman.

Writeups for PortSwigger WebSecurity Academy

A Burp Suite Extension for pentester and bug bounty hunters an to maintain checklist, map flows, write test cases and track vulnerabilities

A tool to help you intercept encrypted APIs in iOS or Android apps

A simple plugin to export JS files from one or multiple targets

Burp extension to check and exploit the IIS Tilde Enumeration/IIS 8.3 Short Filename Disclosure vulnerability

Burp HTTP history browser (BHHB) - A tool to view HTTP history exported from Burp Suite Community Edition

Jasmin Ransomware is an advanced red team tool (WannaCry Clone) used for simulating real ransomware attacks. Jasmin helps security researchers to overcome the risk of external attacks.

A burp suite extension that reviews backup, old, temporary and unreferenced files on web server for sensitive information (OWASP WSTG-CONF-04, OTG-CONFIG-004)

A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues

CaA - Collector and Analyzer, Insight into information, exploring with intelligence in a thousand ways.

A script for installing private Burp Collaborator with free Let's Encrypt SSL-certificate

CSTC is a Burp Suite extension that allows request/response modification using a GUI analogous to CyberChef