ivision-research / burpscriptLinks
☆63Updated 3 months ago
Alternatives and similar repositories for burpscript
Users that are interested in burpscript are comparing it to the libraries listed below
Sorting:
- A project for fuzzing HTTP/1.1 CL.0 Request Smuggling Attack Vectors☆90Updated last year
- ☆42Updated 2 months ago
- A simple mutator engine which focuses on finding unknown classes of injection vulnerabilities☆67Updated last year
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…☆165Updated 2 months ago
- Mobile Reconnaissance Framework is a powerful, lightweight and platform-independent offensive mobile security tool designed to help hacke…☆78Updated 2 weeks ago
- Automated JavaScript Debugging Tool using CDP - Automatically sets breakpoints for specified strings/patterns in JavaScript code☆93Updated last year
- A PoC code for JSON Smuggling technique to smuggle arbitrary files through JSON☆114Updated last year
- Burp Suite's extension to scan and crawl Single Page Applications☆107Updated 2 years ago
- Burp Extension to add additional functionality for pentesting websocket based applications☆103Updated 4 months ago
- Scalpel is a Burp extension for intercepting and rewriting HTTP traffic, either on the fly or in the Repeater using Python 3 scripts.☆66Updated last year
- ☆44Updated 6 months ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆34Updated last year
- Updated version of the ProtoBurp Extension, with enhanced features and capabilities to encode and fuzz custom protobuf messages☆36Updated 2 years ago
- A rapid HTTP downgrade smuggling scanner written in Go.☆312Updated last year
- An extension to use Semgrep inside Burp Suite.☆89Updated 7 months ago
- A collection of utilities for building extensions using Burp's Montoya API☆52Updated 2 months ago
- Encode and Fuzz Custom Protobuf Messages in Burp Suite☆35Updated 10 months ago
- Bounty Prompt is an Open-Source Burp Suite extension by Bounty Security that leverages advanced AI via Burp AI and Groq AI. It enables us…☆112Updated 10 months ago
- Additional resources for leaking and exploiting ObjRefs via HTTP .NET Remoting (CVE-2024-29059)☆91Updated last year
- ☆90Updated last year
- A blazing fast and fully configurable Blind SQL Injection optimization and automation framework.☆139Updated 7 months ago
- Script to exploit Grafana CVE-2025-4123: XSS and Full-Read SSRF☆53Updated 5 months ago
- SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens☆165Updated last year
- Repository of AI-generated Nuclei templates for public CVEs not yet covered by existing templates, enhancing detection speed and coverage…☆116Updated 3 months ago
- Slip is a CLI tool to create malicious archive files containing path traversal payloads. It supports zip, tar, 7z and zip-like (jar, war,…☆113Updated 7 months ago
- Utility for creating ZipSlip archives☆80Updated 2 years ago
- Nuclei template to detect Apache servers vulnerable to CVE-2024-38473☆29Updated last year
- Automatic security vulnerability remediation for your code.☆64Updated last week
- Progress Telerik Report Server pre-authenticated RCE chain (CVE-2024-4358/CVE-2024-1800)☆77Updated last year
- 😹 Python project to bruteforce Apache Tomcat manager login with known-default credentials☆99Updated last year