dreadnode / burpference
A research project to add some brrrrrr to Burp
☆139Updated last month
Alternatives and similar repositories for burpference:
Users that are interested in burpference are comparing it to the libraries listed below
- CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).☆107Updated 2 months ago
- WhereToGo - is a list of popular services that might be used in organizations. By having an account of the user - you can try to find ent…☆120Updated 2 years ago
- CoWitness is a powerful web application testing tool that enhances the accuracy and efficiency of your testing efforts. It allows you to …☆124Updated 11 months ago
- ☆60Updated 3 months ago
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…☆156Updated 4 months ago
- ☠️ Code for the Defcon Workshop☆23Updated 7 months ago
- A recon tool that uses ML to predict subdomains. Then returns those that resolve.☆54Updated last week
- A streamlined tool for discovering private TLDs for security research.☆180Updated last week
- QRFuzz, a fuzzing toolkit to test malicious QR Codes in mobile applications☆45Updated 10 months ago
- A web CTF for training developers in bug hunting and secure coding!☆97Updated 2 months ago
- ☆165Updated 5 months ago
- A smarter web fuzzing tool that combines local LLM models and ffuf to optimize directory and file discovery☆283Updated 3 months ago
- PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams☆102Updated last month
- ☆139Updated 10 months ago
- LLM Testing Findings Templates☆69Updated last year
- ☆102Updated 8 months ago
- ☆74Updated 5 months ago
- SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens☆154Updated 3 months ago
- Unsecure time-based secret exploitation and Sandwich attack implementation Resources☆134Updated 3 months ago
- A Burp extension to help pentesters copy requests / responses for reports.☆38Updated 3 months ago
- Finds graphql queries in javascript files☆58Updated 10 months ago
- ☆115Updated last year
- 🛠️ Workflows created by the community☆64Updated this week
- Hijack a slack bot to phish your way in☆55Updated 3 months ago