Awesome Burp Suite Resources. 400+ open source Burp plugins, 400+ posts and videos.
☆1,033Feb 20, 2020Updated 6 years ago
Alternatives and similar repositories for awesome-burp-suite
Users that are interested in awesome-burp-suite are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…☆1,790Apr 26, 2024Updated last year
- More than 21K security related open source tools, sorted by star count. Both in markdown and json format.☆612May 25, 2020Updated 5 years ago
- A curated list of amazingly awesome Burp Extensions☆3,379Feb 17, 2026Updated last month
- 有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips…☆3,856Dec 26, 2025Updated 3 months ago
- Awesome webshell collection. Including 150 Github repo, and 200+ blog posts.☆183Dec 30, 2019Updated 6 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
- HackBar plugin for Burpsuite☆1,618Apr 15, 2021Updated 4 years ago
- SSRF (Server Side Request Forgery) testing resources☆2,482Oct 12, 2024Updated last year
- Burp被动扫描流量转发插件☆1,459Jun 17, 2024Updated last year
- Burp suite 分块传输辅助插件☆2,029Feb 23, 2022Updated 4 years ago
- A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅☆1,905Mar 11, 2026Updated 2 weeks ago
- A powerful browser crawler for web vulnerability scanners☆3,021Mar 11, 2025Updated last year
- Use HTTP Smuggling Lab to learn HTTP Smuggling.☆346Nov 20, 2022Updated 3 years ago
- bayonet是一款src资产管理系统,从子域名、端口服务、漏洞、爬虫等一体化的资产管理系统☆1,510Nov 22, 2022Updated 3 years ago
- A Burp Suite Extension that try to find all sub-domain, similar-domain and related-domain of an organization automatically! 基于流量自动收集整个企业或…☆675Jul 16, 2023Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
- 360/0Kee-Team/crawlergo动态爬虫结合长亭XRAY扫描器的被动扫描功能☆1,183Nov 10, 2021Updated 4 years ago
- A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…☆3,910Sep 27, 2021Updated 4 years ago
- weblogic 漏洞扫描工具。目前包含对以下漏洞的检测能力:CVE-2014-4210、CVE-2016-0638、CVE-2016-3510、CVE-2017-3248、CVE-2017-3506、CVE-2017-10271、CVE-2018-2628、CVE-201…☆2,071Nov 24, 2023Updated 2 years ago
- Burpsuite Extension to bypass 403 restricted directory☆1,674Jun 29, 2023Updated 2 years ago
- 1000+ Github Security Resource Collection Repos.☆291Sep 2, 2021Updated 4 years ago
- You Know, For WEB Fuzzing !☆8,276Nov 13, 2023Updated 2 years ago
- List of Awesome CobaltStrike Resources☆4,397Sep 20, 2023Updated 2 years ago
- 从wooyun中提取的payload,以及burp插件☆841Jun 17, 2022Updated 3 years ago
- An exquisite dns&http log server for verify SSRF/XXE/RFI/RCE vulnerability☆470Sep 16, 2023Updated 2 years ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- Passive Security Scanner (被动式安全扫描器)☆1,950Feb 8, 2023Updated 3 years ago
- SSRF plugin for burp Automates SSRF Detection in all of the Request☆616Jan 20, 2021Updated 5 years ago
- sqlmap4burp++是一款兼容Windows,mac,linux多个系统平台的Burp与sqlmap联动插件☆796Nov 7, 2019Updated 6 years ago
- BCS(北京网络安全大会)2019 红队行动会议重点内容☆819Sep 4, 2019Updated 6 years ago
- Toolkit to detect and keep track on Blind XSS, XXE & SSRF☆293Aug 23, 2019Updated 6 years ago
- Burpsuite-Plugins-Usage☆517Apr 7, 2020Updated 5 years ago
- Fastjson vulnerability quickly exploits the framework(fastjson漏洞快速利用框架)☆1,392Dec 16, 2022Updated 3 years ago
- Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势☆1,405Jan 18, 2022Updated 4 years ago
- SRC子域名资产监控☆1,298Jan 14, 2021Updated 5 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
- domain_hunter的高级版本,SRC挖洞、HW打点之必备!自动化资产收集;快速Title获取;外部工具联动;等等☆2,118Mar 3, 2026Updated 3 weeks ago
- 服务端配置错误情况下用于伪造ip地址进行测试的Burp Suite插件☆1,649Sep 29, 2022Updated 3 years ago
- OneForAll是一款功能强大的子域收集工具☆9,686Sep 12, 2025Updated 6 months ago
- 渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell co…☆7,287Updated this week
- 增强版WeblogicScan、检测结果更精确、插件化、添加CVE-2019-2618,CVE-2019-2729检测,Python3支持☆967Jun 16, 2024Updated last year
- 在渗透测试中快速检测常见中间件、组件的高危漏洞。☆728Mar 21, 2022Updated 4 years ago
- 记录自己编写、修改的部分工具☆1,465Oct 19, 2025Updated 5 months ago