aress31 / openapi-parserLinks
Parse OpenAPI documents into Burp Suite for automating OpenAPI-based APIs security assessments (approved by PortSwigger for inclusion in their official BApp Store).
☆200Updated last year
Alternatives and similar repositories for openapi-parser
Users that are interested in openapi-parser are comparing it to the libraries listed below
Sorting:
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆103Updated last year
- Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.☆157Updated 2 months ago
- A tool geared towards pentesting APIs using OpenAPI definitions.☆176Updated 2 years ago
- Burp Suite Extension to monitor new scope☆198Updated 4 years ago
- ☆148Updated 3 years ago
- This repository includes a set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard cer…☆287Updated 4 months ago
- ☆129Updated 7 years ago
- Everything you need about Burp Extension Generation☆154Updated 2 years ago
- Exfiltrate blind Remote Code Execution and SQL injection output over DNS via Burp Collaborator.☆267Updated 4 months ago
- Various Payload wordlists☆236Updated last month
- XSS Hunter Burp Plugin☆149Updated 6 years ago
- Bass grabs you those "extra resolvers" you are missing out on when performing Active DNS enumeration. Add anywhere from 100-6k resolvers …☆147Updated last year
- Burp extension to detect alias traversal via NGINX misconfiguration at scale.☆259Updated 3 years ago
- Burp Bounty is a extension of Burp Suite that improve an active and passive scanner by yourself. This extension requires Burp Suite Pro.☆71Updated 3 years ago
- Weaponizing Live CT logs for automated monitoring of assets☆134Updated 3 years ago
- Push notifications for passive DNS data☆109Updated 9 years ago
- Clientside vulnerability / reflected xss fuzzer☆150Updated last year
- The Burp extension to check JWT (JSON Web Tokens) for using keys from known from public sources☆132Updated 4 years ago
- Evenly distributes scanner load across targets☆87Updated last month
- This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …☆259Updated 2 years ago
- Piper Burp Suite Extender plugin☆122Updated last year
- A tool used to check if a CNAME resolves to the scope address. If the CNAME resolves to a non-scope address it might be worth checking ou…☆134Updated last year
- A Burp Suite Extension for parsing Project Files from the CLI.☆87Updated 8 months ago
- A simple remote scanner for Atlassian Jira☆121Updated 2 years ago
- ☆121Updated 8 years ago
- A collection of scripts to extend Burp Suite☆142Updated 6 years ago
- SHELLING - a comprehensive OS command injection payload generator☆110Updated 5 years ago
- AuthMatrix is a Burp Suite extension that provides a simple way to test authorization in web applications and web services.☆42Updated last year
- Fresh DNS servers☆84Updated this week
- subdomain bruteforce list☆101Updated 7 months ago