Awesome Burp Suite Resources. 400+ open source Burp plugins, 400+ posts and videos.
☆1,033Feb 20, 2020Updated 6 years ago
Alternatives and similar repositories for awesome-burp-suite
Users that are interested in awesome-burp-suite are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…☆1,795Apr 26, 2024Updated last year
- More than 21K security related open source tools, sorted by star count. Both in markdown and json format.☆612May 25, 2020Updated 5 years ago
- A curated list of amazingly awesome Burp Extensions☆3,391Feb 17, 2026Updated 2 months ago
- 有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips…☆3,870Dec 26, 2025Updated 3 months ago
- Awesome webshell collection. Including 150 Github repo, and 200+ blog posts.☆184Dec 30, 2019Updated 6 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- HackBar plugin for Burpsuite☆1,618Apr 15, 2021Updated 5 years ago
- SSRF (Server Side Request Forgery) testing resources☆2,485Oct 12, 2024Updated last year
- Burp被动扫描流量转发插件☆1,459Jun 17, 2024Updated last year
- Burp suite 分块传输辅助插件☆2,031Feb 23, 2022Updated 4 years ago
- A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅☆1,918Apr 3, 2026Updated 2 weeks ago
- A powerful browser crawler for web vulnerability scanners☆3,026Mar 11, 2025Updated last year
- Use HTTP Smuggling Lab to learn HTTP Smuggling.☆348Nov 20, 2022Updated 3 years ago
- bayonet是一款src资产管理系统,从子域名、端口服务、漏洞、爬虫等一体化的资产管理系统☆1,514Nov 22, 2022Updated 3 years ago
- A Burp Suite Extension that try to find all sub-domain, similar-domain and related-domain of an organization automatically! 基于流量自动收集整个企业或…☆675Jul 16, 2023Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- 360/0Kee-Team/crawlergo动态爬虫结合长亭XRAY扫描器的被动扫描功能☆1,184Nov 10, 2021Updated 4 years ago
- A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…☆3,918Sep 27, 2021Updated 4 years ago
- weblogic 漏洞扫描工具。目前包含对以下漏洞的检测能力:CVE-2014-4210、CVE-2016-0638、CVE-2016-3510、CVE-2017-3248、CVE-2017-3506、CVE-2017-10271、CVE-2018-2628、CVE-201…☆2,070Nov 24, 2023Updated 2 years ago
- Burpsuite Extension to bypass 403 restricted directory☆1,678Jun 29, 2023Updated 2 years ago
- 1000+ Github Security Resource Collection Repos.☆293Sep 2, 2021Updated 4 years ago
- You Know, For WEB Fuzzing !☆8,278Nov 13, 2023Updated 2 years ago
- List of Awesome CobaltStrike Resources☆4,406Sep 20, 2023Updated 2 years ago
- 从wooyun中提取的payload,以及burp插件☆839Jun 17, 2022Updated 3 years ago
- An exquisite dns&http log server for verify SSRF/XXE/RFI/RCE vulnerability☆470Sep 16, 2023Updated 2 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Passive Security Scanner (被动式安全扫描器)☆1,948Feb 8, 2023Updated 3 years ago
- sqlmap4burp++是一款兼容Windows,mac,linux多个系统平台的Burp与sqlmap联动插件☆795Nov 7, 2019Updated 6 years ago
- SSRF plugin for burp Automates SSRF Detection in all of the Request☆621Jan 20, 2021Updated 5 years ago
- BCS(北京网络安全大会)2019 红队行动会议重点内容☆821Sep 4, 2019Updated 6 years ago
- Burpsuite-Plugins-Usage☆518Mar 28, 2026Updated 3 weeks ago
- Fastjson vulnerability quickly exploits the framework(fastjson漏洞快速利用框架)☆1,392Dec 16, 2022Updated 3 years ago
- Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势☆1,405Jan 18, 2022Updated 4 years ago
- SRC子域名资产监控☆1,298Jan 14, 2021Updated 5 years ago
- domain_hunter的��高级版本,SRC挖洞、HW打点之必备!自动化资产收集;快速Title获取;外部工具联动;等等☆2,123Apr 10, 2026Updated last week
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- 服务端配置错误情况下用于伪造ip地址进行测试的Burp Suite插件☆1,648Sep 29, 2022Updated 3 years ago
- OneForAll是一款功能强大的子域收集工具☆9,725Sep 12, 2025Updated 7 months ago
- 增强版WeblogicScan、检测结果更精确、插件化、添加CVE-2019-2618,CVE-2019-2729检测,Python3支持☆966Jun 16, 2024Updated last year
- 渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell co…☆7,316Updated this week
- 在渗透测试中快速检测常见中间件、组件的高危漏洞。☆728Mar 21, 2022Updated 4 years ago
- 记录自己编写、修改的部分工具☆1,465Oct 19, 2025Updated 6 months ago
- Toolkit to detect and keep track on Blind XSS, XXE & SSRF☆337Aug 23, 2019Updated 6 years ago