Burp Suite extension for API security testing with 15 attack types, 108+ payloads, intelligent fuzzing, BOLA/IDOR detection, AI integration, and automated reconnaissance. Supports REST/GraphQL/SOAP APIs with Nuclei, Turbo Intruder, and external tool integration. OWASP API Top 10 coverage.
☆58Apr 23, 2026Updated 2 weeks ago
Alternatives and similar repositories for BurpAPISecuritySuite
Users that are interested in BurpAPISecuritySuite are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- The following code when compiled in go takes a domain name as an argument and outputs an HTML file with Google Search links for various d…☆17Sep 11, 2024Updated last year
- Rehashing APIs to prevent hash based detection☆14Jan 7, 2025Updated last year
- Repository for tools used for the OSCP☆26Sep 18, 2025Updated 7 months ago
- Extract entire function source code based on giving line number using Javaparser☆21Jul 15, 2025Updated 9 months ago
- takes shellcode bad-bytes and banishes them, returning cleaned shellcode with preserved functionalities☆62Mar 1, 2026Updated 2 months ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Tools to recover, extract and decrypt Atomic wallets☆13Dec 12, 2025Updated 4 months ago
- Interactive results explorer and annotation tool for Nosey Parker☆58Jun 28, 2025Updated 10 months ago
- Template projects for hijacking cryptsp.dll, version.dll and winmm.dll☆19Aug 31, 2017Updated 8 years ago
- 停止维护☆13Mar 5, 2018Updated 8 years ago
- Terms of Use Conditional Access M365 Evilginx Phishlet☆46Jun 23, 2025Updated 10 months ago
- Collection of powershell scripts I used to complete my CARTP and CARTE courses.☆49Feb 27, 2026Updated 2 months ago
- woodpecker插件生成hessian利用payload☆20Sep 19, 2023Updated 2 years ago
- BOF for C2 framework☆44Nov 9, 2024Updated last year
- Free cybersecurity training resources☆13Feb 5, 2020Updated 6 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- AV/EDR processes termination by exploiting a vulnerable driver (BYOVD)☆280Jan 21, 2026Updated 3 months ago
- ☆16Dec 4, 2023Updated 2 years ago
- ReverseJS: A blog focused on reverse engineering Javascript☆11Feb 9, 2024Updated 2 years ago
- ☆26Mar 24, 2026Updated last month
- Playing with ISO 15693 emulation☆14Dec 25, 2024Updated last year
- A security checking tool☆113Feb 4, 2026Updated 3 months ago
- BadExclusions is a tool to identify folder custom or undocumented exclusions on AV/EDR☆21Feb 8, 2024Updated 2 years ago
- PowerShell SharePoint extraction + auditing tool for red/blue/purple teams. Enumerates all SharePoint sites/drives a user can access via …☆158Jan 25, 2026Updated 3 months ago
- A small web app that lists Hacker News top stories.☆76Mar 30, 2026Updated last month
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Python library for code analysis with CPG and Joern☆25Jun 23, 2023Updated 2 years ago
- genAI agent providing security context, tooling for performing security analysis on CVE, components and more☆23May 1, 2026Updated last week
- Find S3 AWS/GCP/Azure buckets while surfing. S3DNS acts as DNS server, follows CNAMEs and matches any bucket pattern☆128Apr 27, 2026Updated last week
- Wonka is a sweet Windows tool that extracts Kerberos tickets from the Local Security Authority (LSA) cache. Like finding a ticket, but fo…☆167Oct 21, 2025Updated 6 months ago
- A single repository for any security tools, scripts, documentation, etc. that I add☆12Apr 25, 2017Updated 9 years ago
- A BOF to retrieve decryption keys for WhatsApp Desktop and a utility script to decrypt the databases.☆87Mar 2, 2025Updated last year
- A network segmentation and egress control testing tool for PCI DSS v4.0 compliance. Automatically discovers network segments, validates i…☆13Aug 15, 2025Updated 8 months ago
- Golang implementation of @CCob's C# ThreadlessInject☆31May 11, 2024Updated last year
- 🛡️ Free AI that blocks hackers while you sleep. Runs on cheap hardware. When someone in Tokyo gets attacked, you're protected in 30 seco…☆40Apr 19, 2026Updated 2 weeks ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- ☆22Jun 17, 2020Updated 5 years ago
- Anti-Cheat Artifacts detector for IDA☆97Jan 2, 2026Updated 4 months ago
- 钉钉数据库解密工具,支持 WEB UI 展示 | DingTalk Database Decryption Tool with Web UI Visualization.☆60Jan 20, 2026Updated 3 months ago
- Tool that gathers a customizable set of ETW telemetry and generates user-defined detections☆53Jan 28, 2026Updated 3 months ago
- Phishing Template Workbench☆36Apr 14, 2026Updated 3 weeks ago
- Secure approach to secure file storage in untrusted environments.☆35Mar 26, 2019Updated 7 years ago
- A brookshear virtual machine written in Go☆10Sep 5, 2019Updated 6 years ago