phefley / burp-javascript-security-extension
A Burp Suite extension which performs checks for cross-domain scripting against the DOM, subresource integrity checks, and evaluates JavaScript resources against threat intelligence data.
☆24Updated 3 years ago
Alternatives and similar repositories for burp-javascript-security-extension:
Users that are interested in burp-javascript-security-extension are comparing it to the libraries listed below
- This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…☆36Updated 2 years ago
- A Burp Suite content discovery plugin that add the smart into the Buster!☆31Updated 7 years ago
- ☆32Updated 5 years ago
- Extract subdomains from rapiddns.io☆23Updated 2 years ago
- A simple tool to decloak/expose the bucket name behind a domain.☆22Updated 5 years ago
- ☆22Updated 3 years ago
- This script is intended to automate your reconnaissance process in an organized fashion☆39Updated 5 years ago
- Python tool for expired domain discovery in crossdomain.xml files☆24Updated 8 years ago
- This is a Burp extension for adding additional payloads to active scanner that require out-of-band validation. Works great with XSSHunter☆20Updated 8 years ago
- Burp Extension for copying requests safely. It redacts headers like Cookie, Authorization and X-CSRF-Token for now. More support can be a…☆17Updated 4 years ago
- A Burpsuite extension written in Python to perform basic validation fuzzing☆11Updated 2 years ago
- This changes the style of Burp Suite's Repeater tabs to help the testers☆29Updated 5 years ago
- UUID issues for Burp Suite☆51Updated 2 years ago
- BurpSuite's payload-generation extension aiming at applying fuzzed test-cases depending on the type of payload (integer, string, path; JS…☆41Updated 4 years ago
- A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.☆27Updated 6 years ago
- ☆17Updated last year
- A Burp Extender plugin that will allow you to tamper with requests containing compressed, serialized java objects.☆24Updated 6 years ago
- A tool for fetching archived URLs (to be rewritten in Go).☆40Updated 6 years ago
- A simple tool to detect wildcards domain based on Amass's wildcards detector.☆64Updated 4 years ago
- A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!☆33Updated 6 years ago
- Burp Suite Importer - Connect to multiple web servers while populating the sitemap.☆48Updated 4 years ago
- Kubernetes Scanner☆40Updated 3 years ago
- Push notifications to Slack channel or to custom server based on BurpSuite response conditions.☆17Updated 4 years ago
- Sparty - MS Sharepoint and Frontpage Auditing Tool☆31Updated 10 years ago
- Find orphaned IP's on cloud services☆29Updated 5 years ago
- ☆37Updated 4 years ago
- This burpsuite extender provides a solution on testing Enterprise applications that involve security Authorization tokens into every HTTP…☆46Updated 6 years ago
- Go fish for AWS EIPs☆46Updated 4 years ago
- Burp extension that checks application requests and responses for indicators of vulnerability or targets for attack☆41Updated 2 years ago
- Burp extension to generate multi-step CSRF POC.☆30Updated 5 years ago