PortSwigger/auth-analyzer external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

PortSwigger/auth-analyzer

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/PortSwigger/auth-analyzer)

Close

PortSwigger / auth-analyzerView on GitHubMore

• External links
• Readme badge

☆113May 8, 2024Updated last year

Alternatives and similar repositories for auth-analyzer

Users that are interested in auth-analyzer are comparing it to the libraries listed below

• PortSwigger / nuclei-burp-integration

  View on GitHub
  Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.
  ☆31Jun 22, 2023Updated 2 years ago
• PortSwigger / wordlist-extractor

  View on GitHub
  ☆21Oct 9, 2017Updated 8 years ago
• PortSwigger / nosqli-scanner

  View on GitHub
  This extension provides a way to discover NoSQL injection vulnerabilities.
  ☆10Feb 1, 2021Updated 5 years ago
• PortSwigger / autowasp

  View on GitHub
  BurpSuite Extension: A one-stop pen testing checklist and logger tool
  ☆269Mar 4, 2023Updated 2 years ago
• PortSwigger / pentest-mapper

  View on GitHub
  A Burp Suite Extension for Application Penetration Testing to map flows and vulnerabilities
  ☆119Nov 23, 2023Updated 2 years ago
• hisxo / JSpector

  View on GitHub
  A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues
  ☆374Jul 25, 2023Updated 2 years ago
• simioni87 / auth_analyzer

  View on GitHub
  Burp Extension for testing authorization issues. Automated request repeating and parameter value extraction on the fly.
  ☆215Nov 4, 2025Updated 3 months ago
• lucsemassa / burp_bug_finder

  View on GitHub
  Automatic Bug finder with buprsuite
  ☆166Mar 6, 2023Updated 2 years ago
• v1ll41n / H1-Report-Finder

  View on GitHub
  A burpsuite extension that helps security researchers find public security reports published on h1 based on the selected host
  ☆42May 9, 2020Updated 5 years ago
• NewBeginning6 / Subdir-vul-find

  View on GitHub
  ☆90Sep 25, 2023Updated 2 years ago
• xnl-h4ck3r / xnLinkFinder

  View on GitHub
  A python tool used to discover endpoints, potential parameters, a target specific wordlist for a given target and secrets
  ☆1,529Jan 15, 2026Updated last month
• doomerhunter / tampermonkey-useful-scripts

  View on GitHub
  Useful scripts for tampermonkey that I used during bug hunting. Will be updated "au fil de l'eau"
  ☆17Jun 2, 2025Updated 9 months ago
• rsenet / apkfram

  View on GitHub
  apkfram was written in order to help any mobile penetration testers to identify the Framework used to develop the Android application.
  ☆12Oct 9, 2024Updated last year
• Bamboo-fly / Android-Vulnerability-Analysis

  View on GitHub
  基于JavaFX框架做的一款安卓漏洞分析桌面软件，采用了反编译技术与静态分析技术，上传apk包即可分析APP可能包含的风险。
  ☆14Nov 23, 2022Updated 3 years ago
• weujieytt / HostHeaderAttack

  View on GitHub
  检测host头攻击的Burpsuite被动扫描插件，Burpsuite passive scanning plugin responsible for detecting host header attack
  ☆11Apr 28, 2023Updated 2 years ago
• Aiven-Open / pghostile

  View on GitHub
  Pghostile is a tool to automate the exploitation of PostgreSQL® specific vulnerabilities that could lead to privilege escalation. It can …
  ☆11Aug 17, 2023Updated 2 years ago
• PortSwigger / encode-ip

  View on GitHub
  Burp Suite extension to encode an IP address focused to bypass application IP / domain blacklist.
  ☆11Sep 22, 2023Updated 2 years ago
• PortSwigger / js-miner

  View on GitHub
  This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.
  ☆81Jul 20, 2023Updated 2 years ago
• JeppW / npm-dependency-confusion-poc

  View on GitHub
  Simple PoC package for testing for dependency confusion vulnerabilities.
  ☆10Feb 9, 2021Updated 5 years ago
• enemy-submarine / netstalking-catalogue

  View on GitHub
  Каталог нетсталкерских ресурсов, команд, инструментов, источников контента.
  ☆11Nov 16, 2020Updated 5 years ago
• shanxigetanxiaochou / burp-xss-scan

  View on GitHub
  burp被动插件扫反射xss
  ☆14Nov 29, 2023Updated 2 years ago
• kh4sh3i / Bug-Hunting-Handbook

  View on GitHub
  Bug Hunting Handbook
  ☆11Aug 11, 2022Updated 3 years ago
• EdOverflow / swiss-bugbounty-programs

  View on GitHub
  List of bug bounty programs of companies/organisations in Switzerland
  ☆13Oct 28, 2021Updated 4 years ago
• Ciyfly / sucker

  View on GitHub
  对任意http网站添加指定漏洞 目前实现部分漏洞的追加 支持本身http服务 支持反向代理追加
  ☆28Oct 8, 2022Updated 3 years ago
• vrechson / copy-to-bcheck

  View on GitHub
  BurpSuite extension to convert requests into bcheck scripts
  ☆33Jul 18, 2023Updated 2 years ago
• PortSwigger / active-scan-plus-plus

  View on GitHub
  ActiveScan++ Burp Suite Plugin
  ☆247Dec 16, 2025Updated 2 months ago
• handbye / base64encode

  View on GitHub
  burpsuite POST数据包base64编码插件
  ☆17Mar 14, 2024Updated last year
• t0data / openSecurityBooks

  View on GitHub
  网络安全开源图书三部曲
  ☆18Jan 3, 2026Updated 2 months ago
• DanaEpp / APIDiscovery

  View on GitHub
  An extension for Burp's Web Vulnerability Scanner that can detect API discovery metadata and extract data useful during recon.
  ☆19Sep 13, 2025Updated 5 months ago
• gregxsunday / lemma

  View on GitHub
  Remote CLI tools at your fingertips
  ☆16Jul 31, 2024Updated last year
• TRIKKSS / Semgrep4BurpSuite

  View on GitHub
  burpsuite extension to analyze javascript files using semgrep
  ☆12Feb 3, 2025Updated last year
• PortSwigger / BChecks

  View on GitHub
  BChecks collection for Burp Suite Professional and Burp Suite DAST
  ☆770Jan 26, 2026Updated last month
• yukselberkay / pmanager

  View on GitHub
  Store and retrieve your passwords from a secure offline database. Check if your passwords has leaked previously to prevent targeted passw…
  ☆33Mar 4, 2023Updated 2 years ago
• XinCaoZ / RouteVulScanPlus

  View on GitHub
  基于RouteVulScan插件的小更新，添加了路由过滤功能和修复一些小bug
  ☆14Sep 9, 2024Updated last year
• darklotuskdb / frida-scripts-fetcher-exploiter

  View on GitHub
  The Frida Scripts Fetcher & Exploiter tool helps you search and use those scripts to exploit based on the provided search keyword.
  ☆18Aug 5, 2023Updated 2 years ago
• projectdiscovery / nuclei-burp-plugin

  View on GitHub
  Nuclei plugin for BurpSuite
  ☆1,322Oct 22, 2025Updated 4 months ago
• xnl-h4ck3r / GAP-Burp-Extension

  View on GitHub
  Burp Extension to find potential endpoints, parameters, and generate a custom target wordlist
  ☆1,497Jan 8, 2026Updated last month
• BugBountyzip / Bambdas

  View on GitHub
  ☆139Nov 9, 2024Updated last year
• kleiton0x00 / Todesstern

  View on GitHub
  A simple mutator engine which focuses on finding unknown classes of injection vulnerabilities
  ☆67Mar 18, 2024Updated last year