A Burp Suite extension which performs checks for cross-domain scripting against the DOM, subresource integrity checks, and evaluates JavaScript resources against threat intelligence data.
☆26Mar 23, 2022Updated 3 years ago
Alternatives and similar repositories for burp-javascript-security-extension
Users that are interested in burp-javascript-security-extension are comparing it to the libraries listed below
Sorting:
- This is a Burp extension for adding additional payloads to active scanner that require out-of-band validation. Works great with XSSHunter☆20Feb 16, 2017Updated 9 years ago
- ☆16Oct 24, 2018Updated 7 years ago
- Spiders given URLs for input fields.☆17Jul 8, 2017Updated 8 years ago
- Magento Security Scanner☆13Jan 10, 2022Updated 4 years ago
- Check for know iframeBuster XSS☆12Sep 25, 2024Updated last year
- gathers the XSS cheatsheet payloads and creates a usable wordlist☆74Jan 4, 2021Updated 5 years ago
- Ruby On Rails unrestricted render() exploit☆16Feb 9, 2018Updated 8 years ago
- A Burp Suite Professional extension for decrypting/decoding various types of cookies.☆12Jun 12, 2019Updated 6 years ago
- This is my path to OSCP☆11Jun 16, 2018Updated 7 years ago
- Broken Link Hijacking Burp Extension☆57Sep 13, 2019Updated 6 years ago
- This Burp Suite extension enables the generation of shareable links to specific requests which other Burp Suite users can import.☆12May 20, 2022Updated 3 years ago
- Automatically extracts API Keys from APK files☆13Feb 1, 2022Updated 4 years ago
- ☆11Mar 9, 2016Updated 9 years ago
- Burp Scanner extension to fingerprint and actively scan instances of the Adobe Experience Manager CMS. It checks the website for common m…☆75Mar 22, 2024Updated last year
- This repository contains hit lists to use for web application content discovery.☆11May 31, 2017Updated 8 years ago
- Script to help enumerate and dig through Github and Github Enterprise installations.☆15Nov 30, 2018Updated 7 years ago
- ☆15Nov 27, 2017Updated 8 years ago
- BurpSuite extension to inject custom cross-site scripting payloads on every form/request submitted to detect blind XSS vulnerabilities☆118Dec 23, 2025Updated 2 months ago
- Scan secrets from Continuous Integration Build Logs☆53Oct 14, 2019Updated 6 years ago
- Burp extension to find and decode BigIP and Netscaler cookies☆15Jul 20, 2018Updated 7 years ago
- Pickaxe is a fast and customizable security scan library which simplifies security testing for web applications like Adobe Experience Man…☆15Dec 5, 2023Updated 2 years ago
- Burp plugin to do random fuzzing of HTTP requests☆33Jan 31, 2017Updated 9 years ago
- A security-first linter for code that shouldn't need linting☆18Sep 12, 2023Updated 2 years ago
- A Burp Extension that makes it easier to view all script code on a Response.☆17Nov 12, 2023Updated 2 years ago
- Python script to decrypt files encrypted using Cordova in Android app☆15Aug 19, 2018Updated 7 years ago
- Lightweight BApp that seamlessly integrates powerful LLM-scanning capabilities into Burp's built-in Scanner with improved accuracy. Suppo…☆34Aug 4, 2025Updated 6 months ago
- View screenshots as a slideshow over http☆15Mar 13, 2020Updated 5 years ago
- dauthi is a tool that takes advantage of API functionality across a variety of MDM solutions to perform user enumeration and single-facto…☆43Apr 23, 2024Updated last year
- Messy BurpSuite plugin for SQL Truncation vulnerabilities.☆63Apr 17, 2020Updated 5 years ago
- Wordlist for content(directory) bruteforce discovering with Burp or dirsearch☆217Oct 12, 2024Updated last year
- A scripted library of hacking techniques.☆18Jul 18, 2018Updated 7 years ago
- Deeplack is a python script designed for comparing images (screenshots) using DeepAI to detect changes on websites.☆14Jun 19, 2019Updated 6 years ago
- Fuzzing for LFI using Burpsuite☆67Oct 4, 2016Updated 9 years ago
- SubdomainDB is a simple self-hosted API that allows you to maintain your own subdomain database.☆31Jan 8, 2018Updated 8 years ago
- A plugin for Burp Suite Pro that uses the GraphQL schema to begin Active Scanning the entire endpoint.☆41Oct 20, 2025Updated 4 months ago
- extracts urls from text☆16Jul 13, 2018Updated 7 years ago
- Burp Suite extension for parsing Swagger web service definition files☆19Jul 15, 2025Updated 7 months ago
- A Burp Suite extension to add a custom header (e.g. JWT)☆20Dec 9, 2021Updated 4 years ago
- A Broken-URL Checker☆82Nov 2, 2017Updated 8 years ago