SpecOps is a Burp Suite extension that ingests an OpenAPI or Swagger spec and instantly builds a workbench to test every documented endpoint.
☆30Jan 18, 2026Updated last month
Alternatives and similar repositories for SpecOps
Users that are interested in SpecOps are comparing it to the libraries listed below
Sorting:
- swagger接口测试☆17Jun 12, 2025Updated 8 months ago
- Burp Extension for a passive scanning JS files for endpoint links.☆56Nov 20, 2024Updated last year
- ☆34Mar 6, 2025Updated 11 months ago
- 个人漏洞收集项目,包括复现环境、POC、EXP等☆30Mar 14, 2025Updated 11 months ago
- 基于AI的BurpSuite漏洞分析插件☆11Sep 21, 2023Updated 2 years ago
- 本项目是一个以“实战为导向”的 XSS 漏洞练习靶场,覆盖反射型、存储型、DOM 型、SVG、CSP、框架注入、协议绕过等多种场景。页面样式统一,逻辑清晰,适合系统化学习与教学演示☆21Jan 10, 2026Updated last month
- 一款支持检测web应用程序未授权访问缺陷的burp suite插件,可自定义配置检测字段以及返回包json数据分析☆12Apr 22, 2024Updated last year
- Scan any running MCP server to produce an actionable security report of vulnerabilities and misconfigurations.☆20Nov 17, 2025Updated 3 months ago
- Burpsuite验证码DOS攻击插件。☆19Oct 24, 2024Updated last year
- Burp extension to fuzz/brute force GenAI/LLM prompts for potential behvioural and Prompt Injection vulnerabilities.☆13Sep 3, 2025Updated 5 months ago
- 练习Golang的时候写的一个Ysoserial图形化工具☆11Aug 1, 2023Updated 2 years ago
- Extend wordlist by appending digits and special characters to each word.☆10Apr 26, 2023Updated 2 years ago
- Criminally easy framework to use☆12Sep 3, 2024Updated last year
- 资产测绘输出xlsx表格☆14Sep 10, 2024Updated last year
- CVE-2023-40028 affects Ghost, an open source content management system, where versions prior to 5.59.1 allow authenticated users to uploa…☆13Jan 7, 2025Updated last year
- 细雪之舞·刷课神器(SnowbladeDance):一款提升在线学习效率的浏览器插件,一键秒课、倍速播放(支持当前/全部页面)、全局/单页静音、全局/单页暂停、解除复制和右键限制、防止页面挂机超时以及自定义快速导航网址。☆13Sep 19, 2025Updated 5 months ago
- burp解密插件☆10Jun 9, 2023Updated 2 years ago
- API Highlighter 是一个用于 BurpSuite 的插件,主要用于 web 应用迭代安全测试时高亮指定的新增接口,该插件最初用 Python 编写,现重构为 Java 版本。☆42Feb 19, 2025Updated last year
- Cobalt Strike 插件包,超级缝合怪...☆11Jul 11, 2025Updated 7 months ago
- Pentesting tool to automate common op tasks and organize discovered data.☆13Dec 23, 2025Updated 2 months ago
- Download a subtitle from Subscene, extract the zip file, convert to UTF-8, rename the subtitle file to match the movie in the current dir…☆11Jun 17, 2018Updated 7 years ago
- 一款支持 目录扫描(可配合熊猫头)+自动绕403+敏感匹配 等的小脚本工具,目前此脚本属于创始测试版,后续会继续升级!!!CowCow🐂🐂☆18Dec 27, 2024Updated last year
- A simple self-hosted RSS reader with AI article summarization feature. 🧶☕️📜☆10Nov 1, 2025Updated 4 months ago
- 添加识别与检测异步js逻辑☆22Aug 26, 2025Updated 6 months ago
- 一个用于检测HOST 头攻击漏洞的Burp Suite扩展插件。☆13Mar 7, 2025Updated 11 months ago
- Burp Suite's extension to scan and crawl Single Page Applications☆107Apr 14, 2023Updated 2 years ago
- Burp Suite extension to encode an IP address focused to bypass application IP / domain blacklist.☆46Mar 4, 2024Updated last year
- ☆11Oct 3, 2019Updated 6 years ago
- Log all keyboard and terminal input/output for any app 记录任意程序的键盘输入和终端输入输出☆22Sep 19, 2025Updated 5 months ago
- The list of companies who use Vue.js in Croatia☆10Aug 26, 2025Updated 6 months ago
- 清羽(ClearFeather)是一款专为网络安全攻防演练设计的资产智能清洗与分类工具。它能够自动化处理攻防演练中的各类资产数据,包括IP、域名、URL等,通过结合DeepSeek API的大语言模型能力和精准的正则表达式处理,实现资产的高效识别、分类与整理。☆23May 29, 2025Updated 9 months ago
- 读取dump向日葵&Todesk进程的文件获得连接信息☆17Sep 27, 2024Updated last year
- Simple web app to track OWASP WSTG security testing progress☆27Sep 12, 2025Updated 5 months ago
- eeecdn检测是否存在cdn,输出整理真实c段☆14Feb 25, 2025Updated last year
- WannaCry_HTA 是一个基于 HTA(HTML Application)技术开发的高度仿真 WannaCry 勒索病毒界面模拟程序。该项目简单、完全可控,专为安全研究、应急演练和安全教育场景设计。界面UI参考zR00t1师傅项目编写。☆25Aug 13, 2025Updated 6 months ago
- Token impersonation in PowerShell to execute under the context of another user.☆24Oct 14, 2025Updated 4 months ago
- 常用字典收集☆10Mar 23, 2021Updated 4 years ago
- 集成 heapdump + shiro + fastjson + log4j2 漏洞环境☆13Apr 29, 2025Updated 10 months ago
- A shortlist of core ServiceNow tables.☆15Oct 16, 2023Updated 2 years ago