daffainfo/match-replace-burp

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/daffainfo/match-replace-burp)

daffainfo / match-replace-burp

Useful "Match and Replace" burpsuite rules

☆365

Alternatives and similar repositories for match-replace-burp

Users that are interested in match-replace-burp are comparing it to the libraries listed below

Sorting:

volkandindar / agartha
View on GitHub
A Burp Suite extension for identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violati…
☆395Feb 18, 2026Updated last week
xnl-h4ck3r / GAP-Burp-Extension
View on GitHub
Burp Extension to find potential endpoints, parameters, and generate a custom target wordlist
☆1,497Jan 8, 2026Updated last month
daffainfo / all-about-apikey
View on GitHub
Detailed information about API key / OAuth token (Description, Request, Response, Regex, Example)
☆289Sep 26, 2023Updated 2 years ago
Sh1Yo / x8
View on GitHub
Hidden parameters discovery suite
☆2,027Sep 8, 2024Updated last year
six2dez / OneListForAll
View on GitHub
Rockyou for web fuzzing
☆3,028Feb 11, 2026Updated 2 weeks ago
Impact-I / x8-Burp
View on GitHub
Hidden parameters discovery suite
☆224Nov 14, 2022Updated 3 years ago
Th0h0 / autossrf
View on GitHub
Smart context-based SSRF vulnerability scanner.
☆360May 5, 2022Updated 3 years ago
xm1k3 / cent
View on GitHub
Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one pl…
☆1,039Aug 23, 2025Updated 6 months ago
NagliNagli / Shockwave-OSS
View on GitHub
☆756Jun 26, 2024Updated last year
ethicalhackingplayground / TProxer
View on GitHub
A Burp Suite extension made to automate the process of finding reverse proxy path based SSRF.
☆184Nov 22, 2021Updated 4 years ago
ExpLangcn / agartha
View on GitHub
a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to …
☆49Apr 25, 2022Updated 3 years ago
SeifElsallamy / Blind-XSS-Manager
View on GitHub
Never forget where you inject.
☆297Aug 15, 2025Updated 6 months ago
projectdiscovery / nuclei-burp-plugin
View on GitHub
Nuclei plugin for BurpSuite
☆1,322Oct 22, 2025Updated 4 months ago
ferreiraklet / Jeeves
View on GitHub
Jeeves SQLI Finder
☆215May 13, 2022Updated 3 years ago
trickest / inventory
View on GitHub
Asset inventory of over 800 public bug bounty programs.
☆1,519Feb 14, 2025Updated last year
hisxo / JSpector
View on GitHub
A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues
☆374Jul 25, 2023Updated 2 years ago
xnl-h4ck3r / urless
View on GitHub
De-clutter a list of URLs
☆386Feb 3, 2026Updated 3 weeks ago
xnl-h4ck3r / xnLinkFinder
View on GitHub
A python tool used to discover endpoints, potential parameters, a target specific wordlist for a given target and secrets
☆1,524Jan 15, 2026Updated last month
Karanxa / Bug-Bounty-Wordlists
View on GitHub
A repository that includes all the important wordlists used while bug hunting.
☆1,378Mar 11, 2023Updated 2 years ago
s0md3v / uro
View on GitHub
declutters url lists for crawling/pentesting
☆1,531Feb 23, 2025Updated last year
Net-hunter121 / API-Wordlist
View on GitHub
☆250May 25, 2021Updated 4 years ago
Akokonunes / Private-Nuclei-Templates
View on GitHub
☆173Nov 20, 2025Updated 3 months ago
p0dalirius / webapp-wordlists
View on GitHub
This repository contains wordlists for each versions of common web applications and content management systems (CMS). Each version contai…
☆534Dec 4, 2024Updated last year
hakluke / hakoriginfinder
View on GitHub
Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!
☆978Jan 12, 2024Updated 2 years ago
ayadim / Nuclei-bug-hunter
View on GitHub
i will upload more templates here to share with the comunity.
☆567Apr 17, 2024Updated last year
daffainfo / bypass-403
View on GitHub
Go script for bypassing 403 forbidden
☆160Aug 6, 2021Updated 4 years ago
emadshanab / Nuclei-Templates-Collection
View on GitHub
Nuclei Templates Collection
☆1,080Dec 25, 2025Updated 2 months ago
ethicalhackingplayground / ssrf-king
View on GitHub
SSRF plugin for burp Automates SSRF Detection in all of the Request
☆615Jan 20, 2021Updated 5 years ago
0xDexter0us / Scavenger
View on GitHub
Burp extension to create target specific and tailored wordlist from burp history.
☆255Dec 8, 2021Updated 4 years ago
orwagodfather / WordList
View on GitHub
☆858Dec 26, 2025Updated 2 months ago
AggressiveUser / AllForOne
View on GitHub
AllForOne allows bug bounty hunters and security researchers to collect all Nuclei YAML templates from various public repositories,
☆732Mar 21, 2024Updated last year
glebarez / cero
View on GitHub
Scrape domain names from SSL certificates of arbitrary hosts
☆690Mar 31, 2024Updated last year
SirBugs / Priv8-Nuclei-Templates
View on GitHub
My Priv8 Nuclei Templates
☆338May 12, 2024Updated last year
laluka / bypass-url-parser
View on GitHub
bypass-url-parser
☆1,115Updated this week
sw33tLie / bbscope
View on GitHub
Scope aggregation tool for HackerOne, Bugcrowd, Intigriti, YesWeHack, and Immunefi!
☆1,272Updated this week
projectdiscovery / fuzzing-templates
View on GitHub
Community curated list of nuclei templates for finding "unknown" security vulnerabilities.
☆89May 2, 2024Updated last year
dwisiswant0 / awesome-oneliner-bugbounty
View on GitHub
A collection of awesome one-liner scripts especially for bug bounty tips.
☆3,077Jul 29, 2024Updated last year
NitinYadav00 / gf-patterns
View on GitHub
Some of the gf patterns which i use
☆44Jan 19, 2022Updated 4 years ago
ksharinarayanan / SSRFire
View on GitHub
An automated SSRF finder. Just give the domain name and your server and chill! ;) Also has options to find XSS and open redirects
☆970Dec 8, 2021Updated 4 years ago