PortSwigger / headless-burp
Provides a suite of Burp extensions and a maven plugin to automate security tests using BurpSuite.
☆25Updated 6 years ago
Alternatives and similar repositories for headless-burp:
Users that are interested in headless-burp are comparing it to the libraries listed below
- A collection of scripts used to interact with the Burp Rest API☆51Updated 6 years ago
- Burp Suite extension to passively scan for applications revealing server error messages☆66Updated last year
- A Burp extension to show the Collaborator client in a tab☆36Updated 2 years ago
- Kubernetes Scanner☆40Updated 3 years ago
- Proof-of-concept CORS exploitation tool.☆35Updated 5 years ago
- Simple trick to increase readability of exceptions raised by Burp extensions written in Python☆43Updated 8 years ago
- ☆42Updated 5 years ago
- Burp Suite Importer - Connect to multiple web servers while populating the sitemap.☆48Updated 4 years ago
- Oracle Database Penetration Testing Reference (10g/11g)☆36Updated 6 years ago
- .NET Deserialization Passive Scanner☆45Updated 7 years ago
- BlindRef serves as the basis for an automated Blind-Based XXE Exploitation Framework☆26Updated 8 years ago
- ☆32Updated 5 years ago
- Sparty - MS Sharepoint and Frontpage Auditing Tool☆31Updated 10 years ago
- A bash script that fetches and maintains thousands of DNS resolvers☆65Updated 4 years ago
- learning case to prepare OSWE☆37Updated 5 years ago
- Burp Extension for AWS Signing☆87Updated 2 months ago
- This burpsuite extender provides a solution on testing Enterprise applications that involve security Authorization tokens into every HTTP…☆46Updated 6 years ago
- Simple Server Side Request Forgery services enumeration tool.☆55Updated 6 years ago
- Multithreaded Padding Oracle Attack on Oracle OAM (CVE-2018-2879)☆24Updated 5 years ago
- An interactive OOB XXE data exfiltration tool☆91Updated 7 years ago
- This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…☆36Updated 2 years ago
- A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!☆33Updated 6 years ago
- A simple tool to decloak/expose the bucket name behind a domain.☆22Updated 5 years ago
- Burp extension to passively scan for applications revealing software version numbers☆31Updated 10 months ago
- Burp Suite extension to track vulnerability assessment progress☆59Updated 5 years ago
- The Outlook HTML Leak Test Project☆41Updated 6 years ago
- Plattform to develop and experiment with existing java web attacks.☆31Updated 7 years ago
- This is a web application fuzzer scanner - the goal was CLI flexibility and rapid prototyping☆48Updated 5 years ago
- BURP extension providing a set of values for the HTTP request "Host" header for the "BURP Intruder" in order to abuse virtual host resolu…☆60Updated 7 years ago
- Extension adds a new tab in Burp Suite called Extractor☆43Updated 5 years ago