phefley/burp-javascript-security-extension external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

phefley/burp-javascript-security-extension

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/phefley/burp-javascript-security-extension)

Close

phefley / burp-javascript-security-extensionView on GitHubMore

• External links
• Readme badge

A Burp Suite extension which performs checks for cross-domain scripting against the DOM, subresource integrity checks, and evaluates JavaScript resources against threat intelligence data.

☆26Mar 23, 2022Updated 3 years ago

Alternatives and similar repositories for burp-javascript-security-extension

Users that are interested in burp-javascript-security-extension are comparing it to the libraries listed below

• the-bumble / Burp-Scanner-OOB-Checks

  View on GitHub
  This is a Burp extension for adding additional payloads to active scanner that require out-of-band validation. Works great with XSSHunter
  ☆20Feb 16, 2017Updated 9 years ago
• virusvfv / BurpBounty-Profiles

  View on GitHub
  ☆16Oct 24, 2018Updated 7 years ago
• TheHackerDev / input-field-finder

  View on GitHub
  Spiders given URLs for input fields.
  ☆17Jul 8, 2017Updated 8 years ago
• soufianetahiri / MagentoScanner

  View on GitHub
  Magento Security Scanner
  ☆13Jan 10, 2022Updated 4 years ago
• tr4l / iframeBusterXSS

  View on GitHub
  Check for know iframeBuster XSS
  ☆12Sep 25, 2024Updated last year
• crawl3r / PortswiggerXSS

  View on GitHub
  gathers the XSS cheatsheet payloads and creates a usable wordlist
  ☆74Jan 4, 2021Updated 5 years ago
• 0x00-0x00 / CVE-2016-2098

  View on GitHub
  Ruby On Rails unrestricted render() exploit
  ☆16Feb 9, 2018Updated 8 years ago
• SolomonSklash / cookie-decrypter

  View on GitHub
  A Burp Suite Professional extension for decrypting/decoding various types of cookies.
  ☆12Jun 12, 2019Updated 6 years ago
• Atrilka / OSCP

  View on GitHub
  This is my path to OSCP
  ☆11Jun 16, 2018Updated 7 years ago
• arbazkiraak / BurpBLH

  View on GitHub
  Broken Link Hijacking Burp Extension
  ☆57Sep 13, 2019Updated 6 years ago
• Static-Flow / BurpSuiteShareRequests

  View on GitHub
  This Burp Suite extension enables the generation of shareable links to specific requests which other Burp Suite users can import.
  ☆12May 20, 2022Updated 3 years ago
• bbhunter / apk_api_key_extractor

  View on GitHub
  Automatically extracts API Keys from APK files
  ☆13Feb 1, 2022Updated 4 years ago
• PentestBox / OWASP-Joomla-Vulnerability-Scanner

  View on GitHub
  ☆11Mar 9, 2016Updated 9 years ago
• thomashartm / burp-aem-scanner

  View on GitHub
  Burp Scanner extension to fingerprint and actively scan instances of the Adobe Experience Manager CMS. It checks the website for common m…
  ☆75Mar 22, 2024Updated last year
• lavalamp- / content-discovery-hit-lists

  View on GitHub
  This repository contains hit lists to use for web application content discovery.
  ☆11May 31, 2017Updated 8 years ago
• djhohnstein / GitSecrets

  View on GitHub
  Script to help enumerate and dig through Github and Github Enterprise installations.
  ☆15Nov 30, 2018Updated 7 years ago
• sahildhar / BurpExtenderPractise

  View on GitHub
  ☆15Nov 27, 2017Updated 8 years ago
• BitTheByte / BitBlinder

  View on GitHub
  BurpSuite extension to inject custom cross-site scripting payloads on every form/request submitted to detect blind XSS vulnerabilities
  ☆118Dec 23, 2025Updated 2 months ago
• abdilahrf / shania

  View on GitHub
  Scan secrets from Continuous Integration Build Logs
  ☆53Oct 14, 2019Updated 6 years ago
• SecurityRiskAdvisors / Burp-Load-Balancer-Cookie-Scanner

  View on GitHub
  Burp extension to find and decode BigIP and Netscaler cookies
  ☆15Jul 20, 2018Updated 7 years ago
• Netcentric / pickaxe-security-scanner

  View on GitHub
  Pickaxe is a fast and customizable security scan library which simplifies security testing for web applications like Adobe Experience Man…
  ☆15Dec 5, 2023Updated 2 years ago
• floyd-fuh / burp-HttpFuzzer

  View on GitHub
  Burp plugin to do random fuzzing of HTTP requests
  ☆33Jan 31, 2017Updated 9 years ago
• JosephTLucas / lintML

  View on GitHub
  A security-first linter for code that shouldn't need linting
  ☆18Sep 12, 2023Updated 2 years ago
• xnl-h4ck3r / ScriptView-Burp-Extension

  View on GitHub
  A Burp Extension that makes it easier to view all script code on a Response.
  ☆17Nov 12, 2023Updated 2 years ago
• securitytest3r / decrypt-cordova-file

  View on GitHub
  Python script to decrypt files encrypted using Cordova in Android app
  ☆15Aug 19, 2018Updated 7 years ago
• richeeta / AIAuditor

  View on GitHub
  Lightweight BApp that seamlessly integrates powerful LLM-scanning capabilities into Burp's built-in Scanner with improved accuracy. Suppo…
  ☆34Aug 4, 2025Updated 6 months ago
• tehryanx / ssslide

  View on GitHub
  View screenshots as a slideshow over http
  ☆15Mar 13, 2020Updated 5 years ago
• emptynebuli / dauthi

  View on GitHub
  dauthi is a tool that takes advantage of API functionality across a variety of MDM solutions to perform user enumeration and single-facto…
  ☆43Apr 23, 2024Updated last year
• InitRoot / BurpSQLTruncSanner

  View on GitHub
  Messy BurpSuite plugin for SQL Truncation vulnerabilities.
  ☆63Apr 17, 2020Updated 5 years ago
• cujanovic / Content-Bruteforcing-Wordlist

  View on GitHub
  Wordlist for content(directory) bruteforce discovering with Burp or dirsearch
  ☆217Oct 12, 2024Updated last year
• johneiser / HackDeli

  View on GitHub
  A scripted library of hacking techniques.
  ☆18Jul 18, 2018Updated 7 years ago
• Lerhan / Deeplack

  View on GitHub
  Deeplack is a python script designed for comparing images (screenshots) using DeepAI to detect changes on websites.
  ☆14Jun 19, 2019Updated 6 years ago
• Team-Firebugs / Burp-LFI-tests

  View on GitHub
  Fuzzing for LFI using Burpsuite
  ☆67Oct 4, 2016Updated 9 years ago
• smiegles / subdomainDB

  View on GitHub
  SubdomainDB is a simple self-hosted API that allows you to maintain your own subdomain database.
  ☆31Jan 8, 2018Updated 8 years ago
• FWDSEC / burp-auto-gql

  View on GitHub
  A plugin for Burp Suite Pro that uses the GraphQL schema to begin Active Scanning the entire endpoint.
  ☆41Oct 20, 2025Updated 4 months ago
• subfinder / urlx

  View on GitHub
  extracts urls from text
  ☆16Jul 13, 2018Updated 7 years ago
• augustd / burp-suite-swaggy

  View on GitHub
  Burp Suite extension for parsing Swagger web service definition files
  ☆19Jul 15, 2025Updated 7 months ago
• lorenzog / burpAddCustomHeader

  View on GitHub
  A Burp Suite extension to add a custom header (e.g. JWT)
  ☆20Dec 9, 2021Updated 4 years ago
• tomnomnom / burl

  View on GitHub
  A Broken-URL Checker
  ☆82Nov 2, 2017Updated 8 years ago