ivision-research / burpscriptLinks
☆60Updated last month
Alternatives and similar repositories for burpscript
Users that are interested in burpscript are comparing it to the libraries listed below
Sorting:
- Mobile Reconnaissance Framework is a powerful, lightweight and platform-independent offensive mobile security tool designed to help hacke…☆64Updated 3 weeks ago
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…☆161Updated 6 months ago
- ☆43Updated this week
- A project for fuzzing HTTP/1.1 CL.0 Request Smuggling Attack Vectors☆87Updated last year
- An extension to use Semgrep inside Burp Suite.☆89Updated 2 weeks ago
- A PoC code for JSON Smuggling technique to smuggle arbitrary files through JSON☆113Updated last year
- Scalpel is a Burp extension for intercepting and rewriting HTTP traffic, either on the fly or in the Repeater using Python 3 scripts.☆60Updated last year
- A simple mutator engine which focuses on finding unknown classes of injection vulnerabilities☆67Updated last year
- Burp Extension to add additional functionality for pentesting websocket based applications☆94Updated 11 months ago
- SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens☆159Updated 6 months ago
- A rapid HTTP downgrade smuggling scanner written in Go.☆255Updated last year
- A collection of utilities for building extensions using Burp's Montoya API☆50Updated 11 months ago
- Automated JavaScript Debugging Tool using CDP - Automatically sets breakpoints for specified strings/patterns in JavaScript code☆89Updated 5 months ago
- Additional resources for leaking and exploiting ObjRefs via HTTP .NET Remoting (CVE-2024-29059)☆89Updated last year
- lightyear is a tool to dump files in tedious (blind) conditions using PHP filters☆90Updated 7 months ago
- Encode and Fuzz Custom Protobuf Messages in Burp Suite☆32Updated 3 months ago
- Script to exploit Grafana CVE-2025-4123: XSS and Full-Read SSRF☆23Updated 2 weeks ago
- ☆35Updated last month
- 😹 Python project to bruteforce Apache Tomcat manager login with known-default credentials☆101Updated last year
- ☆52Updated last week
- Repository of AI-generated Nuclei templates for public CVEs not yet covered by existing templates, enhancing detection speed and coverage…☆82Updated 5 months ago
- ☆14Updated last week
- Utility for creating ZipSlip archives☆72Updated 2 years ago
- ☆66Updated 4 months ago
- jws2pubkey tool☆38Updated 11 months ago
- Fuzz WebSockets with custom Python code☆16Updated 9 months ago
- Burp Suite extension for testing Passkey systems.☆69Updated 2 months ago
- ☆18Updated 2 months ago
- POC for RCE vulnerability in ParseExcel library, and ParseXLSX too, as a depending library☆17Updated 8 months ago
- This repository offers insights and a proof-of-concept tool to exploit two significant deserialization vulnerabilities in Inductive Autom…☆44Updated last year