Maikefee/Upload_Auto_Fuzz_Burp_Plugin

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Maikefee/Upload_Auto_Fuzz_Burp_Plugin)

Maikefee / Upload_Auto_Fuzz_Burp_Plugin

这是一个用于Burp Suite的文件上传漏洞自动化fuzz测试插件。该插件提供了多种绕过技术，包括WAF绕过、内容类型绕过、文件扩展名绕过等。

☆43

Alternatives and similar repositories for Upload_Auto_Fuzz_Burp_Plugin

Users that are interested in Upload_Auto_Fuzz_Burp_Plugin are comparing it to the libraries listed below

Sorting:

7uup / TsojanScan-Plus
View on GitHub
TsoJanScan Burp Plugins Secondary Development
☆100Jan 15, 2026Updated 2 months ago
mk4no1 / SwaggerAH
View on GitHub
SwaggerGan
☆104Nov 18, 2025Updated 4 months ago
xk4ng / AntiDebugger-Chrome
View on GitHub
针对于无限debugger场景而编译的Chromium，适用于逆向分析、前端调试对抗、爬虫开发等场景
☆41Oct 24, 2025Updated 4 months ago
Just-Hack-For-Fun / NOPTrace-Configs
View on GitHub
符合 OpenForensicRules 数字取证与应急响应信息采集规则格式规范的配置文件仓库
☆28Jul 18, 2025Updated 8 months ago
HACK-THE-WORLD / ConvertiX
View on GitHub
ConvertiX, 一款将常用网络空间测绘平台语句之间互相转换的工具。
☆54Aug 25, 2025Updated 6 months ago
Symph0nia / ExpFuzzWordlist
View on GitHub
ExpFuzz字典
☆21May 27, 2024Updated last year
AugustineFulgur / mSS-GUI
View on GitHub
基于mitmproxy的安全工具，支持请求自动加解密、webpack优化、流量关键字查询。
☆90Jan 5, 2026Updated 2 months ago
whgojp / DumpAll-Go
View on GitHub
一款信息泄漏利用工具，适用于.git/.svn/.DS_Store泄漏和目录列出(dumpall Golang重构版)
☆21Apr 8, 2025Updated 11 months ago
baianquanzu / Google_searchurl
View on GitHub
用于爬取谷歌关键词搜索的url，便于红队，src等快速提取
☆33May 21, 2024Updated last year
Revcloudi / Rinte
View on GitHub
Rinte是一款专为渗透测试人员设计的 BurpSuite 插件，提供强大的框架自动化安全扫描功能。目前支持1000+POC
☆75Jan 8, 2026Updated 2 months ago
zg-sec / PHP_FileUpload
View on GitHub
PHP文件上传50+绕过手法全景解析
☆17Mar 16, 2025Updated last year
Zer08Bytes / AegisScan
View on GitHub
AegisScan是一款“自动化”的“渗透测试”扫描工具。
☆44Jan 9, 2026Updated 2 months ago
duckpigdog / XMCVE-WebRecon
View on GitHub
基于 Chrome Manifest V3 的渗透测试辅助插件，用于快速发现页面输入点、评估 CSP 风险、嗅探潜在敏感资产、识别常见前端框架指纹，并内置常用编码转换工具，帮助进行合法合规的渗透测试与安全检查
☆55Mar 2, 2026Updated 2 weeks ago
JYanger / redis-unauthorized-check
View on GitHub
内网redis未授权弱口令批量检测工具
☆22May 28, 2020Updated 5 years ago
zelat / BurpCopilot
View on GitHub
基于AI的BurpSuite漏洞分析插件
☆11Sep 21, 2023Updated 2 years ago
blackguest007 / mitmproxy-gui
View on GitHub
用于解决渗透测试加解密的难题，让你的burp像测试明文这么简单
☆83Aug 10, 2025Updated 7 months ago
Pei4AN / RuoYi_Explosive_Tools
View on GitHub
若依验证码识别爆破工具
☆11Aug 30, 2024Updated last year
outlaws-bai / GalaxyDemo
View on GitHub
HTTP报文加密的具体实现，用于测试 https://github.com/outlaws-bai/Galaxy
☆33Dec 29, 2025Updated 2 months ago
OracleNep / GlodonScan
View on GitHub
广联达OA系统漏洞批量检测工具
☆16Nov 3, 2024Updated last year
AnQuanPig / XiaSQL_Plus
View on GitHub
迄今为止公开的二开瞎注插件中最强版本：Xia SQL Plus，基于 “瞎注” xia_sql二次开发。
☆90Feb 26, 2026Updated 3 weeks ago
eeeeeeeeee-code / e0e1-config
View on GitHub
综合后渗透方面的杂烩
☆575Mar 1, 2026Updated 3 weeks ago
LINGX5 / HessianExploit-tool
View on GitHub
hessian反序列化利用工具
☆40Jan 4, 2026Updated 2 months ago
ProbiusOfficial / CTFLabX-OS
View on GitHub
【Hello-CTF labs】开箱即用的多靶场集成虚拟机，你只管刷题，剩下的交给我~
☆11Mar 10, 2025Updated last year
Mr-xn / tongda_OfficeTask_RCE
View on GitHub
通达OA OfficeTask udp 2397 端口远程代码执行RCE检测工具
☆21Jun 13, 2025Updated 9 months ago
kk12-30 / JSSS-Find
View on GitHub
让JavaScript资产分析变得简单而强大
☆171Mar 10, 2026Updated last week
Tsojan / TsojanScan
View on GitHub
An integrated BurpSuite vulnerability detection plug-in.
☆1,463Jan 29, 2026Updated last month
badboycxcc / Brc4-License-T00ls
View on GitHub
AI 生成
☆48Jul 30, 2025Updated 7 months ago
kk12-30 / Scan-X
View on GitHub
Scan-X是一款AI赋能渗透测试的框架平台。
☆181Feb 12, 2026Updated last month
HeNrY4396 / MatouWebshell
View on GitHub
MatouWebshell 是一套基于 Vue 3 + Python 的 Webshell 利用平台。内置 Webshell 生成与连接能力，支持 Linux 目标下的 PHP、JSP、JSPX，并可自定义加密方式与请求/响应封装（form/json/xml/png 等），…
☆86Jan 9, 2026Updated 2 months ago
evilashz / PIGADVulnScanner
View on GitHub
检测域内常见一把梭漏洞，包括：NoPac、ZeroLogon、CVE-2022-26923、PrintNightMare
☆79Oct 23, 2023Updated 2 years ago
Chave0v0 / AutoFuzz
View on GitHub
AutoFuzz是一款安全测试的辅助型BurpSuite插件，主要用于自动识别请求中的参数，根据预设的payload逐个发包测试，从而提高测试效率。
☆116Jun 2, 2025Updated 9 months ago
Young873 / swagger-tool
View on GitHub
用python写的一个自动化解析swagger-api接口并发送的脚本
☆11Oct 18, 2022Updated 3 years ago
admintony / ZZCMS_V8.2_GETSHELL
View on GitHub
ZZCMS v8.2-重装GETSHELL工具
☆11May 8, 2018Updated 7 years ago
phoenix118go / Unauthorized_VUL_GUI
View on GitHub
一款最全未授权访问漏洞批量检测工具，集成40+常见未授权访问漏洞；使用PYQT6，为其添加了GUI界面
☆107Jul 31, 2025Updated 7 months ago
whwlsfb / ViewState-Cracker
View on GitHub
ASP.net ViewState密钥被动扫描爆破BurpSuite插件
☆220Nov 14, 2025Updated 4 months ago
yhy0 / passive-scan-client
View on GitHub
Burp被动扫描流量转发插件
☆84Jul 18, 2024Updated last year
Adminxe / FileHunter
View on GitHub
钓鱼上线后渗透工具
☆131Feb 19, 2023Updated 3 years ago
exp3n5ive / Save-Multiple-URLs
View on GitHub
Save Multiple URLs 是一款专为渗透测试人员设计的浏览器插件，用于一键记录当前浏览器中打开的所有页面 URL。支持复制到剪贴板或导出为 .txt 文件，帮助你在测试过程中快速保存目标站点，提升工作效率。
☆34Jun 16, 2025Updated 9 months ago
eeeeeeeeee-code / POC
View on GitHub
备份的漏洞库，3月开始我们来维护
☆1,834Mar 12, 2026Updated last week