PortSwigger/active-scan-plus-plus external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

PortSwigger/active-scan-plus-plus

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/PortSwigger/active-scan-plus-plus)

Close

PortSwigger / active-scan-plus-plusView on GitHubMore

• External links
• Readme badge

ActiveScan++ Burp Suite Plugin

☆252Mar 26, 2026Updated last month

Alternatives and similar repositories for active-scan-plus-plus

Users that are interested in active-scan-plus-plus are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• PortSwigger / j2ee-scan

  View on GitHub
  J2EEScan is a plugin for Burp Suite Proxy. The goal of this plugin is to improve the test coverage during web application penetration tes…
  ☆76Aug 25, 2021Updated 4 years ago
• PortSwigger / csrf-scanner

  View on GitHub
  CSRF Scanner Extension for Burp Suite Pro
  ☆20Feb 4, 2022Updated 4 years ago
• PortSwigger / nosqli-scanner

  View on GitHub
  This extension provides a way to discover NoSQL injection vulnerabilities.
  ☆10Feb 1, 2021Updated 5 years ago
• PortSwigger / wordlist-extractor

  View on GitHub
  ☆21Oct 9, 2017Updated 8 years ago
• ah8r / csrf

  View on GitHub
  CSRF Scanner Extension for Burp Suite Pro
  ☆20Jun 5, 2018Updated 7 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• PortSwigger / logger-plus-plus

  View on GitHub
  Burp Suite Logger++: Log activities of all the tools in Burp Suite
  ☆190Jun 12, 2024Updated last year
• PortSwigger / backslash-powered-scanner

  View on GitHub
  Finds unknown classes of injection vulnerabilities
  ☆712Apr 30, 2025Updated last year
• PortSwigger / co2

  View on GitHub
  A collection of enhancements for Portswigger's popular Burp Suite web penetration testing tool.
  ☆24Mar 11, 2024Updated 2 years ago
• PortSwigger / bambdas

  View on GitHub
  Bambdas collection for Burp Suite Professional and Community.
  ☆522Mar 12, 2026Updated 2 months ago
• PortSwigger / freddy-deserialization-bug-finder

  View on GitHub
  ☆43Apr 2, 2020Updated 6 years ago
• InitRoot / BurpJSLinkFinder

  View on GitHub
  Burp Extension for a passive scanning JS files for endpoint links.
  ☆817Mar 22, 2024Updated 2 years ago
• albinowax / ActiveScanPlusPlus

  View on GitHub
  ActiveScan++ Burp Suite Plugin
  ☆659May 5, 2026Updated 2 weeks ago
• silentsignal / burp-log4shell

  View on GitHub
  Log4Shell scanner for Burp Suite
  ☆485Sep 24, 2023Updated 2 years ago
• PortSwigger / agartha

  View on GitHub
  a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to …
  ☆30Oct 21, 2025Updated 7 months ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• PortSwigger / turbo-intruder

  View on GitHub
  Turbo Intruder is a Burp Suite extension for sending large numbers of HTTP requests and analyzing the results.
  ☆1,760Dec 15, 2025Updated 5 months ago
• akabe1 / OAUTHScan

  View on GitHub
  Burp Suite Extension useful to verify OAUTHv2 and OpenID security
  ☆176Oct 26, 2024Updated last year
• PortSwigger / xss-validator

  View on GitHub
  This is a burp intruder extender that is designed for automation and validation of XSS vulnerabilities.
  ☆93Feb 10, 2022Updated 4 years ago
• Ling-Yizhou / zendframework3-

  View on GitHub
  ☆17Jan 3, 2021Updated 5 years ago
• PortSwigger / json-web-tokens

  View on GitHub
  JWT Support for Burp
  ☆117Jun 13, 2025Updated 11 months ago
• PortSwigger / auth-analyzer

  View on GitHub
  ☆121May 8, 2024Updated 2 years ago
• PortSwigger / json-decoder

  View on GitHub
  Automatically exported from code.google.com/p/burp-extensions
  ☆10Feb 18, 2020Updated 6 years ago
• PortSwigger / http-request-smuggler

  View on GitHub
  ☆1,206Apr 28, 2026Updated 3 weeks ago
• PortSwigger / 403-bypasser

  View on GitHub
  ☆75Sep 27, 2022Updated 3 years ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• PortSwigger / param-miner

  View on GitHub
  ☆1,431Mar 17, 2026Updated 2 months ago
• LuckyC4t / shiro-urldns

  View on GitHub
  shiro反序列化检测(只是个玩具23333)
  ☆10Jan 16, 2024Updated 2 years ago
• PortSwigger / aws-security-checks

  View on GitHub
  AWS Security Checks
  ☆41Jan 18, 2018Updated 8 years ago
• mdsecresearch / BurpSuiteSharpener

  View on GitHub
  ☆522Jun 5, 2023Updated 2 years ago
• dalconan / NaviPassRead

  View on GitHub
  Read Navicat 12 Password
  ☆19Jun 7, 2020Updated 5 years ago
• hackvertor / hackvertor

  View on GitHub
  ☆243Updated this week
• PortSwigger / server-side-prototype-pollution

  View on GitHub
  ☆44Mar 13, 2023Updated 3 years ago
• swisskyrepo / SSRFmap

  View on GitHub
  Automatic SSRF fuzzer and exploitation tool
  ☆3,555Sep 4, 2025Updated 8 months ago
• PortSwigger / openapi-parser

  View on GitHub
  Parse OpenAPI specifications, previously known as Swagger specifications, into the BurpSuite for automating RESTful API testing – approve…
  ☆47Feb 22, 2024Updated 2 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• Symbo1 / HackerOne-Staffs

  View on GitHub
  HackerOne Staffs
  ☆29Dec 9, 2019Updated 6 years ago
• ticarpi / jwt_tool

  View on GitHub
  A toolkit for testing, tweaking and cracking JSON Web Tokens
  ☆6,542May 1, 2025Updated last year
• PortSwigger / js-link-finder

  View on GitHub
  Burp Extension for a passive scanning JS files for endpoint links.
  ☆187Sep 5, 2019Updated 6 years ago
• s0md3v / Arjun

  View on GitHub
  HTTP parameter discovery suite.
  ☆6,229Feb 20, 2025Updated last year
• lc / gau

  View on GitHub
  Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.
  ☆4,937Mar 20, 2026Updated 2 months ago
• BishopFox / GadgetProbe

  View on GitHub
  Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.
  ☆616Mar 4, 2021Updated 5 years ago
• fullhunt / log4j-scan

  View on GitHub
  A fully automated, accurate, and extensive scanner for finding log4j RCE CVE-2021-44228
  ☆3,431Nov 23, 2022Updated 3 years ago