dreadnode / burpferenceLinks
A research project to add some brrrrrr to Burp
☆192Updated 7 months ago
Alternatives and similar repositories for burpference
Users that are interested in burpference are comparing it to the libraries listed below
Sorting:
- A collection of Turbo Intruder scripts.☆65Updated 8 months ago
- FrogPost: postMessage Security Testing Tool☆96Updated last week
- Abuse trust-boundaries to bypass firewalls and network controls☆375Updated 2 months ago
- Verizon Burp Extensions: AI Suite☆138Updated 5 months ago
- Burp Suite extension for testing Passkey systems.☆74Updated 6 months ago
- CoWitness is a powerful web application testing tool that enhances the accuracy and efficiency of your testing efforts. It allows you to …☆125Updated last year
- Payloads for AI Red Teaming and beyond☆284Updated last month
- WhereToGo - is a list of popular services that might be used in organizations. By having an account of the user - you can try to find ent…☆128Updated 3 years ago
- CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).☆138Updated 6 months ago
- A Burp extension to help pentesters copy requests / responses for reports.☆49Updated 2 months ago
- Certainly is a offensive security toolkit to capture large amounts of traffic in various network protocols in bitflip and typosquat scena…☆219Updated last year
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…☆163Updated last week
- ☆99Updated 4 months ago
- LLM Testing Findings Templates☆73Updated last year
- A smarter web fuzzing tool that combines local LLM models and ffuf to optimize directory and file discovery☆320Updated 10 months ago
- A Go-based utility that processes input through multiple AI models concurrently (OpenAI, Claude, and Gemini) and provides a summarized co…☆86Updated 3 months ago
- ☆190Updated 5 months ago
- Enumeration/exploit/analysis/download/etc pentesting framework for GCP; modeled like Pacu for AWS; a product of numerous hours via @Webbi…☆263Updated 4 months ago
- The Arcanum Prompt Injection Taxonomy☆270Updated last month
- A tool to scrape the AWS ranges looking for a keyword in SSL certificate data.☆236Updated last year
- An experimental project exploring the use of Large Language Models (LLMs) to solve HackTheBox machines autonomously.☆74Updated this week
- Secrets Ninja is an GUI tool for validating & investigating API keys discovered during pentesting & bug bounty hunting.☆135Updated last month
- A YAML based format for describing tools to LLMs, like man pages but for robots!☆77Updated 5 months ago
- ai-based domain name generation☆95Updated 8 months ago
- A web based checklist driven note taking app following bug bounty and web app pentest methodology.☆41Updated 3 months ago
- ☆105Updated last year
- Official TruffleHog Burp Suite Extension. Scan Burp Suite traffic for 800+ different types of secrets (API keys, passwords, SSH keys, etc…☆77Updated 6 months ago
- ☆143Updated last year
- Adobe Experience Manager (AEM) hacking toolkit☆50Updated last week
- Burp extension for Recursive Request Exploits (RRE) — DEFCON 2025☆91Updated last month