Alternatives and similar repositories for Burp-Extensions

Users that are interested in Burp-Extensions are comparing it to the libraries listed below

• summitt / burp-ysoserial
  YSOSERIAL Integration with burp suite
  ☆165Updated 2 years ago
• NickstaDB / SerialBrute
  Java serialization brute force attack tool.
  ☆123Updated 7 years ago
• WebBreacher / tilde_enum
  Takes a URL and checks the system for the tilde enum vuln and then find the files.
  ☆171Updated 6 years ago
• NickstaDB / DeserLab
  Java deserialization exploitation lab.
  ☆235Updated 6 years ago
• joernchen / xxeserve
  XXE Out of Band Server.
  ☆170Updated last year
• firefart / CVE-2018-7600
  CVE-2018-7600 - Drupal 7.x RCE
  ☆72Updated 7 years ago
• h3xstream / http-script-generator
  ZAP/Burp plugin that generate script to reproduce a specific HTTP request (Intended for fuzzing or scripted attacks)
  ☆291Updated 2 years ago
• SpiderLabs / Airachnid-Burp-Extension
  A Burp Extension to test applications for vulnerability to the Web Cache Deception attack
  ☆139Updated 4 years ago
• AonCyberLabs / xxe-recursive-download
  ☆231Updated 9 years ago
• ropnop / xxetimes
  An interactive OOB XXE data exfiltration tool
  ☆90Updated 8 years ago
• federicodotta / HandyCollaborator
  Burp Suite plugin created for using Collaborator tool during manual testing in a comfortable way!
  ☆103Updated 7 years ago
• Meatballs1 / burp-extensions
  Burp Suite Extensions
  ☆127Updated 11 years ago
• dobin / BurpSentinel
  GUI Burp Plugin to ease discovering of security holes in web applications
  ☆150Updated 8 years ago
• PaulSec / HQLmap
  (Deprecated) HQLmap, Automatic tool to exploit HQL injections
  ☆230Updated 5 years ago
• JGillam / burp-co2
  A collection of enhancements for Portswigger's popular Burp Suite web penetration testing tool.
  ☆152Updated last year
• Lopseg / Jsdir
  Jsdir is a Burp Suite extension that extracts hidden paths from js files and beautifies it for further reading.
  ☆118Updated 4 years ago
• g0rx / CVE-2018-7600-Drupal-RCE
  CVE-2018-7600 Drupal RCE
  ☆116Updated 7 years ago
• mogwaisec / mjet
  Mogwai Java Management Extensions (JMX) Exploitation Toolkit
  ☆173Updated 8 years ago
• GDSSecurity / Jetleak-Testing-Script
  Script to test if a server is vulnerable to the JetLeak vulnerability
  ☆144Updated 8 years ago
• lc / 230-OOB
  An Out-of-Band XXE server for retrieving file contents over FTP.
  ☆181Updated 5 years ago
• c0mmand3rOpSec / CVE-2017-10271
  WebLogic Exploit
  ☆142Updated 6 years ago
• kkirsche / CVE-2017-10271
  Oracle WebLogic WLS-WSAT Remote Code Execution Exploit (CVE-2017-10271)
  ☆127Updated 2 years ago
• anexia-it / winshock-test
  Bash script that tests if a system is Winshock (MS14-066) vulnerable
  ☆100Updated 10 years ago
• pyn3rd / CVE-2018-2893
  CVE-2018-2893-PoC
  ☆103Updated 6 years ago
• mpgn / CVE-2019-0192
  RCE on Apache Solr using deserialization of untrusted data via jmx.serviceUrl
  ☆210Updated 6 years ago
• 5alt / ultrarelay
  poison and relay NTLM credentials
  ☆175Updated 6 years ago
• yandex / burp-molly-pack
  Security checks pack for Burp Suite
  ☆138Updated 7 years ago
• o2platform / DefCon_RESTing
  Repository to hold materials for DefCon_RESTing presentation by Dinis, Abe and Alvaro
  ☆53Updated 11 years ago
• yassineaboukir / CVE-2018-0296
  Script to test for Cisco ASA path traversal vulnerability (CVE-2018-0296) and extract system information.
  ☆203Updated last year
• NytroRST / XSSFuzzer
  XSS Fuzzer is a tool which generates XSS payloads based on user-defined vectors and fuzzing lists.
  ☆141Updated 6 years ago