A Burp extension for generic extraction and reuse of data within HTTP requests and responses.
☆96Oct 7, 2025Updated 4 months ago
Alternatives and similar repositories for BurpExtractor
Users that are interested in BurpExtractor are comparing it to the libraries listed below
Sorting:
- A tool that can help detect and takeover subdomains with dead DNS records☆12Aug 23, 2018Updated 7 years ago
- Custom Parameter Handler extension for Burp Suite.☆44Feb 4, 2021Updated 5 years ago
- Jboss_JMXInvokerServlet_Deserialization_RCE☆21Sep 3, 2019Updated 6 years ago
- Burp extension intended to compact Burp extension tabs by hijacking them to own tab.☆130Dec 28, 2020Updated 5 years ago
- A Burp Suite extension to add a custom header (e.g. JWT)☆20Dec 9, 2021Updated 4 years ago
- Burp Extension for AWS Signing☆90Jan 10, 2025Updated last year
- burp插件:python版,token防重放绕过☆19Jan 16, 2021Updated 5 years ago
- Springboot detection☆23Nov 8, 2021Updated 4 years ago
- Burp Suite Extensions☆12Oct 19, 2021Updated 4 years ago
- ☆19Oct 5, 2020Updated 5 years ago
- A DNS tunnel utilizing the Burp Collaborator☆103Oct 8, 2019Updated 6 years ago
- Burp Suite extension to passively scan for applications revealing server error messages☆64Dec 15, 2023Updated 2 years ago
- Bug Bounty Clipboard☆17Nov 6, 2019Updated 6 years ago
- A Burp Suite extension made to automate the process of finding reverse proxy path based SSRF.☆184Nov 22, 2021Updated 4 years ago
- This extension replaces the default repeater tab name with the URL path of the repeater request.☆24Sep 3, 2021Updated 4 years ago
- Golang code to crawl website, extract links from html, paths from JavaScript code, follow and repeat.☆12Jun 4, 2018Updated 7 years ago
- Burp extension to decode NTLM SSP headers and extract domain/host information☆31Mar 11, 2021Updated 4 years ago
- burpsuite extension for extract information from data☆87Jun 2, 2024Updated last year
- A better dns bruteforcer written in golang☆13Nov 4, 2018Updated 7 years ago
- Simple webinterface combining different recon tools.☆12Mar 2, 2018Updated 7 years ago
- Ruby On Rails unrestricted render() exploit☆16Feb 9, 2018Updated 8 years ago
- Burp Suite plugin identifies insertion points for GWT (Google Web Toolkit) requests☆13Sep 24, 2015Updated 10 years ago
- Broken Link Hijacking Burp Extension☆57Sep 13, 2019Updated 6 years ago
- Burp plugin to do random fuzzing of HTTP requests☆33Jan 31, 2017Updated 9 years ago
- Burp Suite extension to log GraphQL operations as a comment☆23Aug 9, 2021Updated 4 years ago
- This is a Burp extension for adding additional payloads to active scanner that require out-of-band validation. Works great with XSSHunter☆20Feb 16, 2017Updated 9 years ago
- Wordlist to get files/ folders listed by the app that may expose passwords, sensitive file or folders☆22Jul 10, 2020Updated 5 years ago
- Burp extension to passively scan for applications revealing software version numbers☆33May 30, 2024Updated last year
- ☆162Dec 7, 2017Updated 8 years ago
- Burp extension to perform Java Deserialization Attacks☆216Feb 2, 2024Updated 2 years ago
- Lab for exploring SSRF vulnerabilities☆247May 30, 2021Updated 4 years ago
- Copy as XMLHttpRequest BurpSuite extension☆32Mar 29, 2021Updated 4 years ago
- A Burp Suite extension which performs checks for cross-domain scripting against the DOM, subresource integrity checks, and evaluates Java…☆26Mar 23, 2022Updated 3 years ago
- Many yaml scanner plugin parser [nuclei-template, xray-poc, ez-poc] - for Python☆13Mar 27, 2022Updated 3 years ago
- Finds the End-Points in JavaScript files☆98Oct 26, 2021Updated 4 years ago
- Python3 Burp History parsing tool to discover potential SQL injection points. To be used in tandem with SQLmap.☆469Nov 14, 2019Updated 6 years ago
- commands☆27Nov 5, 2020Updated 5 years ago
- POC for CVE-2018-15685☆42Aug 24, 2018Updated 7 years ago
- Automatically identify deserialisation issues in Java and .NET applications by using active and passive scans☆584Sep 7, 2021Updated 4 years ago