Alternatives and similar repositories for burpference:

Users that are interested in burpference are comparing it to the libraries listed below

• valeriyshevchenko90 / WhereToGo
  WhereToGo - is a list of popular services that might be used in organizations. By having an account of the user - you can try to find ent…
  ☆120Updated 2 years ago
• stolenusername / cowitness
  CoWitness is a powerful web application testing tool that enhances the accuracy and efficiency of your testing efforts. It allows you to …
  ☆124Updated 11 months ago
• BishopFox / llm-testing-findings
  LLM Testing Findings Templates
  ☆68Updated last year
• doyensec / CSPTPlayground
  CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).
  ☆106Updated 2 months ago
• usdAG / FlowMate
  FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…
  ☆156Updated 4 months ago
• puzzlepeaches / ffufw
  ☆138Updated 10 months ago
• Invicti-Security / brainstorm
  A smarter web fuzzing tool that combines local LLM models and ffuf to optimize directory and file discovery
  ☆274Updated 3 months ago
• projectdiscovery / tldfinder
  A streamlined tool for discovering private TLDs for security research.
  ☆180Updated this week
• prjblk / wordpress-audit-automation
  Scripts to download every Wordpress plugin (updated in the last 2 years) and run Semgrep over the lot of it while storing output in a dat…
  ☆64Updated last month
• jhaddix / CSPReconGO
  ☆102Updated 7 months ago
• vitorfhc / gecko
  Chrome extension for automating CSPT discovery
  ☆57Updated 5 months ago
• d0ge / sign-saboteur
  SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens
  ☆153Updated 3 months ago
• hadriansecurity / subwiz
  A recon tool that uses ML to predict subdomains. Then returns those that resolve.
  ☆53Updated this week
• synacktiv / DepFuzzer
  ☆59Updated 2 months ago
• adelapazborrero / slack_jack
  Hijack a slack bot to phish your way in
  ☆55Updated 2 months ago
• ngalongc / AuthzAI
  ☆164Updated 4 months ago
• g0ldencybersec / Caduceus
  ☆78Updated 5 months ago
• Neuvik / BucketHoarder
  ☆53Updated last year
• JaimePolop / RExpository
  ☆74Updated 8 months ago
• AethliosIK / reset-tolkien
  Unsecure time-based secret exploitation and Sandwich attack implementation Resources
  ☆133Updated 3 months ago
• caido / workshop-defcon
  ☠️ Code for the Defcon Workshop
  ☆23Updated 7 months ago
• boringtools / git-alerts
  Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive files
  ☆216Updated 2 weeks ago
• dwisiswant0 / ipfuscator
  A blazing-fast, thread-safe, straightforward and zero memory allocations tool to swiftly generate alternative IP(v4) address representati…
  ☆85Updated last year
• DotNetRussell / Ensemble
  A Bug Bounty Platform that allows hunters to issue commands over a geo-distributed cluster. The ideal user is someone who is attempting t…
  ☆47Updated 4 months ago
• mschwager / route-detect
  Find authentication (authn) and authorization (authz) security bugs in web application routes.
  ☆257Updated 8 months ago
• attacksurge / ax
  The Distributed Scanning Framework for Everybody! Control Your Infrastructure, Scale Your Scanning—On Your Terms. Easily distribute arbit…
  ☆362Updated last week