Alternatives and similar repositories for burp-extensions

Users that are interested in burp-extensions are comparing it to the libraries listed below

• federicodotta / HandyCollaborator
  Burp Suite plugin created for using Collaborator tool during manual testing in a comfortable way!
  ☆104Updated 7 years ago
• SpiderLabs / Airachnid-Burp-Extension
  A Burp Extension to test applications for vulnerability to the Web Cache Deception attack
  ☆140Updated 4 years ago
• NetSPI / Burp-Extensions
  Central Repo for Burp extensions
  ☆151Updated 4 years ago
• nccgroup / Decoder-Improved
  Improved decoder for Burp Suite
  ☆138Updated 4 years ago
• ropnop / xxetimes
  An interactive OOB XXE data exfiltration tool
  ☆90Updated 8 years ago
• viperbluff / PortWitness
  Tool for checking Whether a domain or its multiple sub-domains are up and running.
  ☆72Updated 6 years ago
• quentinhardy / scriptsAndExploits
  Some scripts and exploits
  ☆148Updated 7 years ago
• rudSarkar / crlf-injector
  A CRLF ( Carriage Return Line Feed ) Injection attack occurs when a user manages to submit a CRLF into an application. This is most commo…
  ☆49Updated 3 years ago
• 7ioSecurity / XSS-Payloads
  XSS Payloads
  ☆49Updated 9 years ago
• silentsignal / burp-image-size
  Image size issues plugin for Burp Suite
  ☆95Updated 7 years ago
• SpiderLabs / burplay
  Burplay is a Burp Extension allowing for replaying any number of requests using same modifications definition. Its main purpose is to aid…
  ☆83Updated 8 years ago
• TheRook / CSRF-Request-Builder
  ☆77Updated 9 years ago
• hook-s3c / CVE-2018-11776-Python-PoC
  Working Python test and PoC for CVE-2018-11776, includes Docker lab
  ☆124Updated 7 years ago
• sethsec / PyCodeInjection
  Automated Python Code Injection Tool
  ☆87Updated 4 years ago
• gursev / flash-xdomain-xploit
  ActionScript Proof of Concept to perform cross-domain reads
  ☆43Updated 12 years ago
• sethsec / crossdomain-exploitation-framework
  Everything you need to exploit overly permissive crossdomain.xml files
  ☆86Updated 11 years ago
• incredibleindishell / sqlite-lab
  This code is vulnerable to SQL Injection and having SQLite database. For SQLite database, SQL Injection payloads are different so it is f…
  ☆159Updated 3 years ago
• 0ang3el / EasyCSRF
  ☆162Updated 7 years ago
• firefart / CVE-2018-7600
  CVE-2018-7600 - Drupal 7.x RCE
  ☆72Updated 7 years ago
• ajinabraham / Static-DOM-XSS-Scanner
  Static DOM XSS Scanner is a Static Analysis tool written in python that will iterate through all the JavaScript and HTML files under the …
  ☆119Updated 10 years ago
• lorenzog / dns-parallel-prober
  PoC for an adaptive parallelised DNS prober
  ☆108Updated 3 years ago
• gradiuscypher / bounty_tools
  Various tools for managing bug bounty recon and exploration.
  ☆49Updated 2 years ago
• 1N3 / HTTPoxyScan
  HTTPoxy Exploit Scanner by 1N3 @CrowdShield
  ☆103Updated 8 years ago
• incredibleindishell / exploit-code-by-me
  Exploit code developed/reproduced by me
  ☆90Updated 2 years ago
• AppSecConsulting / Pentest-Tools
  Penetration Testing Tools Developed by AppSec Consulting.
  ☆48Updated 6 years ago
• mystech7 / Burp-Hunter
  XSS Hunter Burp Plugin
  ☆150Updated 7 years ago
• hvqzao / liffy
  Local File Inclusion Exploitation Tool (mirror)
  ☆128Updated 8 years ago
• strozfriedberg / xxe-recursive-download
  ☆231Updated 10 years ago
• GDSSecurity / Jetleak-Testing-Script
  Script to test if a server is vulnerable to the JetLeak vulnerability
  ☆144Updated 9 years ago
• LinkedInAttic / sometime
  A BurpSuite plugin to detect Same Origin Method Execution vulnerabilities
  ☆60Updated 8 years ago