Alternatives and similar repositories for burpscript:

Users that are interested in burpscript are comparing it to the libraries listed below

• usdAG / FlowMate
  FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…
  ☆156Updated 4 months ago
• d0ge / sign-saboteur
  SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens
  ☆154Updated 3 months ago
• xscorp / jsmug
  A PoC code for JSON Smuggling technique to smuggle arbitrary files through JSON
  ☆113Updated 11 months ago
• snyk / socketsleuth
  Burp Extension to add additional functionality for pentesting websocket based applications
  ☆91Updated 9 months ago
• kleiton0x00 / Todesstern
  A simple mutator engine which focuses on finding unknown classes of injection vulnerabilities
  ☆64Updated last year
• ambionics / scalpel
  Scalpel is a Burp extension for intercepting and rewriting HTTP traffic, either on the fly or in the Repeater using Python 3 scripts.
  ☆57Updated 9 months ago
• Moopinger / CLZero
  A project for fuzzing HTTP/1.1 CL.0 Request Smuggling Attack Vectors
  ☆85Updated last year
• Moopinger / smugglefuzz
  A rapid HTTP downgrade smuggling scanner written in Go.
  ☆253Updated 10 months ago
• coffeeandsecurity / DakshSCRA
  ☆43Updated 2 weeks ago
• m4ll0k / autobreakpointer
  Automated JavaScript Debugging Tool using CDP - Automatically sets breakpoints for specified strings/patterns in JavaScript code
  ☆84Updated 3 months ago
• oppsec / tomcter
  😹 Bruteforce Apache Tomcat manager login with default credentials
  ☆101Updated last year
• mobb-dev / bugsy
  ☆52Updated last week
• gand3lf / semgrepper
  An extension to use Semgrep inside Burp Suite.
  ☆88Updated last year
• cfreal / ten
  A (small) web exploit framework
  ☆83Updated last month
• projectdiscovery / nuclei-templates-ai
  Repository of AI-generated Nuclei templates for public CVEs not yet covered by existing templates, enhancing detection speed and coverage…
  ☆72Updated 3 months ago
• amrudesh1 / morf
  Mobile Reconnaissance Framework is a powerful, lightweight and platform-independent offensive mobile security tool designed to help hacke…
  ☆34Updated 7 months ago
• berylliumsec / eclipse
  AI Powered Sensitive Information Detection
  ☆18Updated last year
• ambionics / lightyear
  lightyear is a tool to dump files in tedious (blind) conditions using PHP filters
  ☆83Updated 4 months ago
• BKreisel / sqlmap-websocket-proxy
  Tool to enable blind sql injection attacks against websockets using sqlmap
  ☆58Updated last year
• siamthanathack / Passkey-Raider
  Burp Suite extension for testing Passkey systems.
  ☆65Updated last month
• CoreyD97 / Burp-Montoya-Utilities
  A collection of utilities for building extensions using Burp's Montoya API
  ☆47Updated 9 months ago
• dillonfranke / protoburp
  Encode and Fuzz Custom Protobuf Messages in Burp Suite
  ☆31Updated 2 weeks ago
• albinowax / albinowaxUtils
  ☆13Updated 3 months ago
• BountySecurity / BountyPrompt
  Bounty Prompt is an Open-Source Burp Suite extension by Bounty Security that leverages advanced AI via Burp AI and Groq AI. It enables us…
  ☆73Updated last month
• usdAG / slipit
  Utility for creating ZipSlip archives
  ☆71Updated 2 years ago
• doyensec / wsrepl
  WebSocket REPL for pentesters
  ☆217Updated 8 months ago
• BishopFox / ysoserial-bf
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆26Updated last year
• cyllective / oauth-labs
  oauth-labs: an intentionally vulnerable set of OAuth 2.0 labs for security training and learning
  ☆65Updated 3 months ago
• codewhitesec / HttpRemotingObjRefLeak
  Additional resources for leaking and exploiting ObjRefs via HTTP .NET Remoting (CVE-2024-29059)
  ☆86Updated last year
• k3idii / Deserek
  Python code to Serialize and Unserialize java binary serialization format.
  ☆19Updated last month