HackBar plugin for Burpsuite
-
Updated
Oct 19, 2018 - Java
#
burp-plugin
Here are 67 public repositories matching this topic...
reCAPTCHA = REcognize CAPTCHA: A Burp Suite Extender that recognize CAPTCHA and use for intruder payload 自动识别图形验证码并用于burp intruder爆破模块的插件
recaptcha
captcha
recognizes-images
burp-plugin
burpsuite
intruder
burp-extensions
recognize-captcha
-
Updated
Aug 26, 2020 - Java
A Burp Suite Extender that try to find all sub-domain, similar-domain and related-domain of an organization automatically! 基于流量自动收集整个企业或组织的子域名、相似域名、相关域名的burp插件
sitemap
spider
certificate
domains
subdomain
certification
burp-plugin
domain-discovery
burp-extensions
subject-alternative-name
subjectaltname
domain-hunter
similar-domain
https-certificate
burpsuite-extender
related-domain
organization-domain
subject-name
-
Updated
Aug 28, 2020 - Java
A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅
cookie
menu
knife
burp
burp-plugin
burpsuite
burp-extensions
hackbar
burpsuite-extender
unicode-to-chinese
update-cookie
u2c
http-edit
header-edit
-
Updated
Jul 24, 2020 - Java
Automated HTTP Request Repeating With Burp Suite
-
Updated
Oct 4, 2019 - Java
Burp plugin to decrypt AES Encrypted traffic of mobile apps on the fly
aes-encryption
burp
burp-plugin
burpsuite
burp-extensions
decryptor
aes-decryption
burpsuite-extender
burp-ui
burpsuite-tools
-
Updated
Nov 12, 2018 - Java
Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease application security people work and allow them perform an automatic authorization tests
-
Updated
Aug 5, 2020 - Python
BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite).
-
Updated
Jul 30, 2020 - Java
A Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).
security-audit
blacklist
bitcoin
hacking
cryptocurrency
penetration-testing
web-security
bugbounty
hacking-tool
security-scanner
burp-plugin
burpsuite
security-tools
burp-extensions
blacklist-extension
burpsuitepro
coinhive
cryptojacking
coinhive-miners
web-application-hacking
-
Updated
Jul 8, 2019 - Python
Burp/ZAP/Maven extension that integrate Retire.js repository to find vulnerable Javascript libraries.
-
Updated
Jul 15, 2020 - JavaScript
A Burp Plugin for Detecting Weaknesses in Content Security Policies
-
Updated
Feb 24, 2016 - Python
Security checks pack for Burp Suite
-
Updated
Feb 8, 2018 - Java
Burp and ZAP plugin to analyse Content-Security-Policy headers or generate template CSP configuration from crawling a Website
-
Updated
Apr 29, 2020 - Java
Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"
-
Updated
Mar 20, 2019 - Java
The Web Audit Search Engine - Index and Search HTTP Requests and Responses in Web Application Audits with ElasticSearch
-
Updated
Feb 28, 2020 - Python
Unicode To Chinese -- U2C : A burpsuite Extender That Convert Unicode To Chinese 【Unicode编码转中文的burp插件】
-
Updated
Nov 9, 2018 - Java
Parse OpenAPI documents into Burp Suite for automating OpenAPI-based APIs security assessments (approved by PortSwigger for inclusion in their official BApp Store).
yaml
parser
json
swagger
openapi
pentesting
restful-api
openapi-specification
burp-plugin
burpsuite
burp-extensions
openapi3
openapi-client
openapi2
-
Updated
Nov 27, 2019 - Java
SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibility of manual testing with many powerful evasion techniques.
sqli
bug-bounty
pentesting
bugbounty
evasion
bughunting
burp-plugin
burpsuite
payload-generator
sqlinjection
burp-extensions
burpsuite-pro
pentesting-tools
-
Updated
Aug 21, 2020 - Python
SQL injection script for MSSQL that extracts domain users from an Active Directory environment based on RID bruteforcing
windows
active-directory
penetration-testing
sql-injection
mssql
application-security
burp-plugin
burp-extensions
user-enumeration
-
Updated
May 10, 2020 - Python
CSTC is a Burp Suite extension that allows request/response modification using a GUI analogous to CyberChef
-
Updated
Aug 3, 2020 - Java
Burp extension helps in finding blind xss vulnerabilities
-
Updated
Jun 19, 2019 - Python
Piper Burp Suite Extender plugin
-
Updated
Jul 9, 2020 - Kotlin
Burp Suite extension to passively scan for applications revealing server error messages
-
Updated
Sep 30, 2018 - Java
Extension providing view with filtering capabilities for both complete and incomplete requests from all burp tools.
-
Updated
May 20, 2019 - Java
HaE-Java是基于Java开发的一款burpsuite插件,其支持自定义正则表达式,可扩展性强,并内置九种高亮颜色,可高亮(Highlight)标记敏感请求,并(And)提取(Extract)关键数据,方便后续深度挖掘。代码内部维护了一个简单的缓存池,burp界面响应速度佳。
security
hackers
hacking
penetration-testing
vulnerability
pentesting
bugbounty
hacker
ethical-hacking
burp-plugin
burpsuite
security-tools
websecurity
burp-extensions
burpsuite-extender
ethicalhacking
-
Updated
Jun 17, 2020 - Java
一键生成Java代码的burp插件/Generate Java script for fuzzing in Burp。
-
Updated
Apr 12, 2020 - Java
Burp Suite plugin that adds additional checks to the passive scanner to reveal the origin IP(s) of Cloudflare-protected web applications.
-
Updated
Sep 26, 2019 - Java
-
Updated
May 30, 2019 - Java
Improve this page
Add a description, image, and links to the burp-plugin topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the burp-plugin topic, visit your repo's landing page and select "manage topics."
Currently, the headless scanner extension expects an XML based configuration file and this works ok. But, making the XML is cumbersome and also requires that most of the request URLs be wrapped in CDATA blocks.
IMHO, this would be much simpler, cleaner and much more concise in JSON than in XML, Also, the configuration files for Burp itself seem to be JSON based. So, this move will make it sor