PortSwigger / burp-extender-api
Burp Wiener API (Legacy)
☆57Updated 9 months ago
Related projects: ⓘ
- Java serialization brute force attack tool.☆123Updated 7 years ago
- An example project that exploits the default typing issue in Jackson-databind via Spring application contexts and expressions☆121Updated 6 years ago
- Burp Suite extension to passively scan for applications revealing server error messages☆64Updated 9 months ago
- Burp Bounty is a extension of Burp Suite that improve an active and passive scanner by yourself. This extension requires Burp Suite Pro.☆69Updated 2 years ago
- ☆41Updated 4 years ago
- YSOSERIAL Integration with burp suite☆40Updated 2 years ago
- All-in-one plugin for Burp Suite for the detection and the exploitation of Java deserialization vulnerabilities☆26Updated 2 years ago
- SHELLING - a comprehensive OS command injection payload generator☆104Updated 5 years ago
- siberas JMX exploitation toolkit☆127Updated last year
- YSOSERIAL Integration with burp suite☆160Updated last year
- Central Repo for Burp extensions☆146Updated 2 years ago
- Burp Suite extension for JAX-RS☆65Updated 7 years ago
- Burp extension to detect alias traversal via NGINX misconfiguration at scale.☆50Updated 2 years ago
- A Burp Extension designed to identify argument injection vulnerabilities.☆115Updated 5 years ago
- Extension providing view with filtering capabilities for both complete and incomplete requests from all burp tools.☆24Updated 2 years ago
- Jsdir is a Burp Suite extension that extracts hidden paths from js files and beautifies it for further reading.☆112Updated 4 years ago
- A Burp extension for generic extraction and reuse of data within HTTP requests and responses.☆90Updated 2 years ago
- HTML5 WebSocket message fuzzer☆141Updated 5 years ago
- ☆107Updated 2 years ago
- AuthMatrix is a Burp Suite extension that provides a simple way to test authorization in web applications and web services.☆38Updated last year
- A Burp extension to show the Collaborator client in a tab☆36Updated last year
- ☆75Updated 11 years ago
- An Out-of-Band XXE server for retrieving file contents over FTP.☆171Updated 4 years ago
- JWT fuzzer☆104Updated 6 years ago
- poison and relay NTLM credentials☆172Updated 5 years ago
- Fuzzing script for redirect URL validator☆48Updated 4 years ago
- BURP extension to record every HTTP request send via BURP and create an audit trail log of an assessment.☆61Updated last month
- Security checks pack for Burp Suite☆137Updated 6 years ago
- Burp extension to detect alias traversal via NGINX misconfiguration at scale.☆251Updated 2 years ago
- ZAP/Burp plugin that generate script to reproduce a specific HTTP request (Intended for fuzzing or scripted attacks)☆287Updated last year