Alternatives and similar repositories for burpscript

Users that are interested in burpscript are comparing it to the libraries listed below

• amrudesh1 / morf
  Mobile Reconnaissance Framework is a powerful, lightweight and platform-independent offensive mobile security tool designed to help hacke…
  ☆64Updated 3 weeks ago
• usdAG / FlowMate
  FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…
  ☆161Updated 6 months ago
• coffeeandsecurity / DakshSCRA
  ☆43Updated this week
• Moopinger / CLZero
  A project for fuzzing HTTP/1.1 CL.0 Request Smuggling Attack Vectors
  ☆87Updated last year
• gand3lf / semgrepper
  An extension to use Semgrep inside Burp Suite.
  ☆89Updated 2 weeks ago
• xscorp / jsmug
  A PoC code for JSON Smuggling technique to smuggle arbitrary files through JSON
  ☆113Updated last year
• ambionics / scalpel
  Scalpel is a Burp extension for intercepting and rewriting HTTP traffic, either on the fly or in the Repeater using Python 3 scripts.
  ☆60Updated last year
• kleiton0x00 / Todesstern
  A simple mutator engine which focuses on finding unknown classes of injection vulnerabilities
  ☆67Updated last year
• snyk / socketsleuth
  Burp Extension to add additional functionality for pentesting websocket based applications
  ☆94Updated 11 months ago
• d0ge / sign-saboteur
  SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens
  ☆159Updated 6 months ago
• Moopinger / smugglefuzz
  A rapid HTTP downgrade smuggling scanner written in Go.
  ☆255Updated last year
• CoreyD97 / Burp-Montoya-Utilities
  A collection of utilities for building extensions using Burp's Montoya API
  ☆50Updated 11 months ago
• m4ll0k / autobreakpointer
  Automated JavaScript Debugging Tool using CDP - Automatically sets breakpoints for specified strings/patterns in JavaScript code
  ☆89Updated 5 months ago
• codewhitesec / HttpRemotingObjRefLeak
  Additional resources for leaking and exploiting ObjRefs via HTTP .NET Remoting (CVE-2024-29059)
  ☆89Updated last year
• ambionics / lightyear
  lightyear is a tool to dump files in tedious (blind) conditions using PHP filters
  ☆90Updated 7 months ago
• dillonfranke / protoburp
  Encode and Fuzz Custom Protobuf Messages in Burp Suite
  ☆32Updated 3 months ago
• NightBloodz / CVE-2025-4123
  Script to exploit Grafana CVE-2025-4123: XSS and Full-Read SSRF
  ☆23Updated 2 weeks ago
• hackvertor / shadow-repeater
  ☆35Updated last month
• 000pp / tomcter
  😹 Python project to bruteforce Apache Tomcat manager login with known-default credentials
  ☆101Updated last year
• mobb-dev / bugsy
  ☆52Updated last week
• projectdiscovery / nuclei-templates-ai
  Repository of AI-generated Nuclei templates for public CVEs not yet covered by existing templates, enhancing detection speed and coverage…
  ☆82Updated 5 months ago
• albinowax / albinowaxUtils
  ☆14Updated last week
• usdAG / slipit
  Utility for creating ZipSlip archives
  ☆72Updated 2 years ago
• watchtowrlabs / fortios-auth-bypass-check-CVE-2024-55591
  ☆66Updated 4 months ago
• SecuraBV / jws2pubkey
  jws2pubkey tool
  ☆38Updated 11 months ago
• Hannah-PortSwigger / WebSocketTurboIntruder
  Fuzz WebSockets with custom Python code
  ☆16Updated 9 months ago
• siamthanathack / Passkey-Raider
  Burp Suite extension for testing Passkey systems.
  ☆69Updated 2 months ago
• bytehope / wwe
  ☆18Updated 2 months ago
• haile01 / perl_spreadsheet_excel_rce_poc
  POC for RCE vulnerability in ParseExcel library, and ParseXLSX too, as a depending library
  ☆17Updated 8 months ago
• TecR0c / DoubleTrouble
  This repository offers insights and a proof-of-concept tool to exploit two significant deserialization vulnerabilities in Inductive Autom…
  ☆44Updated last year