Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"
☆358Oct 14, 2020Updated 5 years ago
Alternatives and similar repositories for burpdeveltraining
Users that are interested in burpdeveltraining are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…☆1,807Apr 26, 2024Updated 2 years ago
- Terraform configuration to build a Burp Private Collaborator Server☆29Sep 16, 2018Updated 7 years ago
- A tool designed to assist with finding all sinks and sources of a web application and display these results in a digestible manner.☆559Mar 6, 2023Updated 3 years ago
- InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable…☆1,790Jun 17, 2026Updated 2 weeks ago
- Burp with Friends☆102Jan 21, 2023Updated 3 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- A curated list of amazingly awesome Burp Extensions☆3,420Feb 17, 2026Updated 4 months ago
- A bash script that automates the scanning of a target network for HTTP resources through XXE☆38Dec 2, 2020Updated 5 years ago
- A natural evolution of Burp Suite's Repeater tool☆202Apr 15, 2026Updated 2 months ago
- Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands …☆952Nov 26, 2022Updated 3 years ago
- Custom scripts for the PIPER Burp extensions.☆98Sep 24, 2023Updated 2 years ago
- Methodology for high-quality web application security testing - https://github.com/tprynn/web-methodology/wiki☆214Oct 31, 2024Updated last year
- A Burp Suite content discovery plugin that add the smart into the Buster!☆379Oct 12, 2020Updated 5 years ago
- SSRF (Server Side Request Forgery) testing resources☆2,507Oct 12, 2024Updated last year
- ☆33May 30, 2019Updated 7 years ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- A collection of scripts to extend Burp Suite☆143Apr 8, 2019Updated 7 years ago
- CollabOzark is a simple tool which helps the researchers track SSRF, RCE, Blind XSS, XXE, External Resource Access payloads triggers.☆135Sep 25, 2019Updated 6 years ago
- Notes about attacking Jenkins servers☆2,099Jul 10, 2024Updated last year
- Everything you need about Burp Extension Generation☆157Jan 6, 2023Updated 3 years ago
- A tool for embedding XXE/XML exploits into different filetypes☆1,173Dec 16, 2024Updated last year
- Client Side Prototype Pollution Scanner☆529Sep 17, 2022Updated 3 years ago
- Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.☆759Apr 12, 2022Updated 4 years ago
- Hacked together script for feeding urls into Burp's Sitemap☆97Dec 7, 2025Updated 6 months ago
- The cheat sheet about Java Deserialization vulnerabilities☆3,177May 26, 2023Updated 3 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- A Burp Suite Extension to extract interesting strings (key, secret, token, or etc.) from a webpage.☆312Jul 9, 2024Updated last year
- Piper Burp Suite Extender plugin☆130Jan 14, 2026Updated 5 months ago
- DNS Rebinding Exploitation Framework☆493Apr 27, 2021Updated 5 years ago
- ☆523Jun 5, 2023Updated 3 years ago
- Burp Extension for AWS Signing☆93Jan 10, 2025Updated last year
- ☆698Jul 4, 2022Updated 4 years ago
- Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.☆619Mar 4, 2021Updated 5 years ago
- This will assist you in the finding of potentially vulnerable PHP code. Each type of grep command is categorized in the type of vulnerabi…☆361Mar 6, 2025Updated last year
- A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…☆3,954Sep 27, 2021Updated 4 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Apache Solr Injection Research☆579Jan 28, 2020Updated 6 years ago
- RMIScout uses wordlist and bruteforce strategies to enumerate Java RMI functions and exploit RMI parameter unmarshalling vulnerabilities☆449Sep 7, 2022Updated 3 years ago
- ☆2,322Jun 10, 2026Updated 3 weeks ago
- A script for installing private Burp Collaborator with free Let's Encrypt SSL-certificate☆211Jun 25, 2024Updated 2 years ago
- The tool exfiltrates data from Couchbase database by exploiting N1QL injection vulnerabilities.☆76Sep 2, 2020Updated 5 years ago
- Burp Extension for easily creating Wordlists☆222Oct 5, 2021Updated 4 years ago
- AWS Extender (Cloud Storage Tester) is a Burp plugin to assess permissions of cloud storage containers on AWS, Google Cloud and Azure.☆258Feb 23, 2022Updated 4 years ago