ivision-research / burpscriptLinks
☆61Updated 5 months ago
Alternatives and similar repositories for burpscript
Users that are interested in burpscript are comparing it to the libraries listed below
Sorting:
- A project for fuzzing HTTP/1.1 CL.0 Request Smuggling Attack Vectors☆90Updated last year
- An extension to use Semgrep inside Burp Suite.☆89Updated 4 months ago
- A simple mutator engine which focuses on finding unknown classes of injection vulnerabilities☆67Updated last year
- A PoC code for JSON Smuggling technique to smuggle arbitrary files through JSON☆113Updated last year
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…☆163Updated 2 weeks ago
- Encode and Fuzz Custom Protobuf Messages in Burp Suite☆33Updated 7 months ago
- ☆40Updated 3 months ago
- Burp Extension to add additional functionality for pentesting websocket based applications☆99Updated last month
- A blazing fast and fully configurable Blind SQL Injection optimization and automation framework.☆137Updated 4 months ago
- ☆44Updated 2 months ago
- Mobile Reconnaissance Framework is a powerful, lightweight and platform-independent offensive mobile security tool designed to help hacke…☆72Updated 3 weeks ago
- A collection of utilities for building extensions using Burp's Montoya API☆52Updated last year
- Scalpel is a Burp extension for intercepting and rewriting HTTP traffic, either on the fly or in the Repeater using Python 3 scripts.☆65Updated last year
- SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens☆163Updated 10 months ago
- Updated version of the ProtoBurp Extension, with enhanced features and capabilities to encode and fuzz custom protobuf messages☆36Updated 2 years ago
- Damn Vulnerable SCA Application☆39Updated 2 months ago
- Script to exploit Grafana CVE-2025-4123: XSS and Full-Read SSRF☆51Updated 2 months ago
- Automated JavaScript Debugging Tool using CDP - Automatically sets breakpoints for specified strings/patterns in JavaScript code☆93Updated 9 months ago
- Bounty Prompt is an Open-Source Burp Suite extension by Bounty Security that leverages advanced AI via Burp AI and Groq AI. It enables us…☆99Updated 7 months ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆29Updated last year
- ☆23Updated 6 months ago
- Slip is a CLI tool to create malicious archive files containing path traversal payloads. It supports zip, tar, 7z and zip-like (jar, war,…☆106Updated 4 months ago
- Additional resources for leaking and exploiting ObjRefs via HTTP .NET Remoting (CVE-2024-29059)☆90Updated last year
- Repository of AI-generated Nuclei templates for public CVEs not yet covered by existing templates, enhancing detection speed and coverage…☆104Updated last week
- A rapid HTTP downgrade smuggling scanner written in Go.☆306Updated last year
- Burp Suite's extension to scan and crawl Single Page Applications☆105Updated 2 years ago
- This repository offers insights and a proof-of-concept tool to exploit two significant deserialization vulnerabilities in Inductive Autom…☆45Updated last year
- ☆59Updated last week
- ☆89Updated last year
- Cake Fuzzer is a project that is meant to help automatically and continuously discover vulnerabilities in web applications created based …☆104Updated 2 months ago