dreadnode / burpferenceLinks
A research project to add some brrrrrr to Burp
☆197Updated 11 months ago
Alternatives and similar repositories for burpference
Users that are interested in burpference are comparing it to the libraries listed below
Sorting:
- A collection of Turbo Intruder scripts.☆68Updated last year
- Verizon Burp Extensions: AI Suite☆142Updated 9 months ago
- FrogPost: postMessage Security Testing Tool☆107Updated 2 months ago
- Abuse trust-boundaries to bypass firewalls and network controls☆385Updated 6 months ago
- ☆241Updated last month
- Certainly is a offensive security toolkit to capture large amounts of traffic in various network protocols in bitflip and typosquat scena…☆223Updated last year
- ☆195Updated 9 months ago
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…☆165Updated 3 months ago
- WhereToGo - is a list of popular services that might be used in organizations. By having an account of the user - you can try to find ent…☆128Updated 3 years ago
- CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).☆151Updated 10 months ago
- Burp Suite extension for testing Passkey systems.☆75Updated 10 months ago
- Secrets Ninja is an GUI tool for validating & investigating API keys discovered during pentesting & bug bounty hunting.☆158Updated 2 months ago
- gRPC Goat is a "Vulnerable by Design" lab created to provide an interactive, hands-on playground for learning and practicing gRPC securit…☆50Updated 4 months ago
- CoWitness is a powerful web application testing tool that enhances the accuracy and efficiency of your testing efforts. It allows you to …☆126Updated last year
- Scripts to download every Wordpress plugin (updated in the last 2 years) and run Semgrep over the lot of it while storing output in a dat…☆89Updated 11 months ago
- A modular framework for benchmarking LLMs and agentic strategies on security challenges across HackTheBox, TryHackMe, PortSwigger Labs, C…☆193Updated this week
- A Burp extension to help pentesters copy requests / responses for reports.☆51Updated 6 months ago
- A smarter web fuzzing tool that combines local LLM models and ffuf to optimize directory and file discovery☆381Updated last year
- A web CTF for training developers in bug hunting and secure coding!☆100Updated last year
- A Go-based utility that processes input through multiple AI models concurrently (OpenAI, Claude, and Gemini) and provides a summarized co…☆89Updated 7 months ago
- Payloads for AI Red Teaming and beyond☆314Updated 5 months ago
- Agentic pentest tooling☆126Updated this week
- ☆101Updated 2 months ago
- LLM Testing Findings Templates☆75Updated last year
- A growing collection of MCP servers bringing offensive security tools to AI assistants. Nmap, Ghidra, Nuclei, SQLMap, Hashcat and more.☆205Updated this week
- Prototype of Full Agentic Application Security Testing, FAAST = SAST + DAST + LLM agents☆67Updated 9 months ago
- AIGoat: A deliberately Vulnerable AI Infrastructure. Learn AI security through solving our challenges.☆259Updated 4 months ago
- QRFuzz, a fuzzing toolkit to test malicious QR Codes in mobile applications☆46Updated last year
- ai-based domain name generation☆101Updated last year
- The Template Injection Playground allows to test a large number of the most relevant template engines for template injection possibilitie…☆58Updated last month