Burp Suite extension for API security testing with 15 attack types, 108+ payloads, intelligent fuzzing, BOLA/IDOR detection, AI integration, and automated reconnaissance. Supports REST/GraphQL/SOAP APIs with Nuclei, Turbo Intruder, and external tool integration. OWASP API Top 10 coverage.
☆50Mar 21, 2026Updated last week
Alternatives and similar repositories for BurpAPISecuritySuite
Users that are interested in BurpAPISecuritySuite are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- The following code when compiled in go takes a domain name as an argument and outputs an HTML file with Google Search links for various d…☆17Sep 11, 2024Updated last year
- Repository for tools used for the OSCP☆23Sep 18, 2025Updated 6 months ago
- BOF to terminate a process via PID as argument☆28Sep 7, 2025Updated 6 months ago
- takes shellcode bad-bytes and banishes them, returning cleaned shellcode with preserved functionalities☆60Mar 1, 2026Updated 3 weeks ago
- Tools to recover, extract and decrypt Atomic wallets☆13Dec 12, 2025Updated 3 months ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Interactive results explorer and annotation tool for Nosey Parker☆56Jun 28, 2025Updated 9 months ago
- Terms of Use Conditional Access M365 Evilginx Phishlet☆45Jun 23, 2025Updated 9 months ago
- Collection of powershell scripts I used to complete my CARTP and CARTE courses.☆49Feb 27, 2026Updated last month
- BOF for C2 framework☆44Nov 9, 2024Updated last year
- Packet Analysis on Steroids☆13Oct 20, 2022Updated 3 years ago
- ☆16Dec 4, 2023Updated 2 years ago
- PowerShell SharePoint extraction + auditing tool for red/blue/purple teams. Enumerates all SharePoint sites/drives a user can access via …☆119Jan 25, 2026Updated 2 months ago
- ReverseJS: A blog focused on reverse engineering Javascript☆11Feb 9, 2024Updated 2 years ago
- ☆26Updated this week
- DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- track, trace, and take down with SCAMTRACK☆36Feb 26, 2026Updated last month
- Playing with ISO 15693 emulation☆14Dec 25, 2024Updated last year
- genAI agent providing security context, tooling for performing security analysis on CVE, components and more☆20Updated this week
- Obsidian Notes used to passed the OSCP exam and most HTB machines / challenges.☆50May 20, 2025Updated 10 months ago
- BadExclusions is a tool to identify folder custom or undocumented exclusions on AV/EDR☆21Feb 8, 2024Updated 2 years ago
- A network segmentation and egress control testing tool for PCI DSS v4.0 compliance. Automatically discovers network segments, validates i…☆13Aug 15, 2025Updated 7 months ago
- Tool that gathers a customizable set of ETW telemetry and generates user-defined detections☆47Jan 28, 2026Updated 2 months ago
- Wonka is a sweet Windows tool that extracts Kerberos tickets from the Local Security Authority (LSA) cache. Like finding a ticket, but fo…☆167Oct 21, 2025Updated 5 months ago
- A BOF to retrieve decryption keys for WhatsApp Desktop and a utility script to decrypt the databases.☆87Mar 2, 2025Updated last year
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
- Anti-Cheat Artifacts detector for IDA☆95Jan 2, 2026Updated 2 months ago
- Golang implementation of @CCob's C# ThreadlessInject☆31May 11, 2024Updated last year
- ☆22Jun 17, 2020Updated 5 years ago
- Resolvalid is a fast, concurrent DNS server validator written in Go. Given a list of DNS servers, it tests each one and outputs only the …☆14Feb 26, 2026Updated last month
- llolbas is a repo containing a localized and off-line version of the ever popular Living Off the Land Binaries and Scripts (LOLBAS) proje…☆12May 1, 2023Updated 2 years ago
- AntiHunter Perimeter Defense Systems☆108Updated this week
- Burp plugin for jxscout☆20May 12, 2025Updated 10 months ago
- Convert your HackerOne reports into reusable AI skills.☆73Mar 9, 2026Updated 3 weeks ago
- Two C# RunPE's capable of x86 and x64 injections☆11Dec 2, 2018Updated 7 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
- Quickly look up hashes in your terminal using the HashMob API 🔥☆13Apr 16, 2023Updated 2 years ago
- ProfileHound - BloodHound OpenGraph collector for user profiles stored on domain machines. Make informed decisions about looting secrets …☆159Jan 3, 2026Updated 2 months ago
- Grab form parameters easily☆14Dec 11, 2024Updated last year
- Hashcat wrapper for attack chain automation and enhanced wordlist generation☆32Sep 15, 2025Updated 6 months ago
- Fast Windows post-exploitation wins after initial access.☆29Jan 28, 2026Updated 2 months ago
- A ready-made template for a project based on libpeconv.☆52Oct 31, 2025Updated 4 months ago
- Collection of many ldap bofs for domain enumeration and privilege escalation. Created for use with the Adaptix C2.☆69Dec 15, 2025Updated 3 months ago