gand3lf / semgrepper
An extension to use Semgrep inside Burp Suite.
☆88Updated last year
Alternatives and similar repositories for semgrepper:
Users that are interested in semgrepper are comparing it to the libraries listed below
- yataf extracts secrets and paths from files or urls - its best used against javascript files☆52Updated 7 months ago
- Encode and Fuzz Custom Protobuf Messages in Burp Suite☆30Updated last month
- A collection of my Semgrep rules☆48Updated last year
- Dependency Confusion Security Testing Tool☆47Updated 2 years ago
- Improve automated and semi-automated active scanning in Burp Pro☆61Updated 2 years ago
- PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams☆103Updated 2 months ago
- Mapping from bug bounty and vulnerability disclosure programs to respective GitHub organizations☆58Updated this week
- Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.☆71Updated 3 years ago
- ☆64Updated 3 years ago
- Security Advisories☆32Updated this week
- ☆94Updated 3 years ago
- Performing automated scan using Burp Suite Pro & Vmware Burp Rest API☆49Updated 2 years ago
- A collection of utilities for building extensions using Burp's Montoya API☆50Updated 9 months ago
- ☆44Updated 4 years ago
- A Burp Suite Extension for parsing Project Files from the CLI.☆87Updated 6 months ago
- A powerful AWS Cognito analysis and session hijacking toolkit designed for security researchers and penetration testers. CognitoHunter sp…☆20Updated 2 months ago
- ☆160Updated 3 years ago
- Utility for creating ZipSlip archives☆72Updated 2 years ago
- ☆70Updated 3 years ago
- Custom scripts for the PIPER Burp extensions.☆98Updated last year
- A GraphQL enumeration and extraction tool☆131Updated 2 years ago
- Proof of Concepts for unsafe deserialization in Ruby☆17Updated 5 months ago
- ☆62Updated 2 years ago
- Manager of third-party sources of Semgrep rules 🗂☆81Updated 8 months ago
- A simple tool to detect vulnerabilities described here https://portswigger.net/research/browser-powered-desync-attacks.☆36Updated 2 years ago
- NotSoCereal: A Deserialization exploit playground☆51Updated 3 years ago
- Additional active scan checks for BURP☆26Updated 6 months ago
- A simple Swagger-ui scanner that can detect old versions vulnerable to various XSS attacks☆58Updated 5 years ago
- ☆25Updated 2 years ago
- ☆30Updated last week