TCP/UDP Non-HTTP Proxy Extension (NoPE) for Burp Suite.
☆1,655May 25, 2024Updated last year
Alternatives and similar repositories for Nope-Proxy
Users that are interested in Nope-Proxy are comparing it to the libraries listed below
Sorting:
- The cheat sheet about Java Deserialization vulnerabilities☆3,164May 26, 2023Updated 2 years ago
- All-in-one plugin for Burp Suite for the detection and the exploitation of Java deserialization vulnerabilities☆799Nov 7, 2021Updated 4 years ago
- A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…☆3,901Sep 27, 2021Updated 4 years ago
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…☆1,773Apr 26, 2024Updated last year
- SSRF (Server Side Request Forgery) testing resources☆2,483Oct 12, 2024Updated last year
- The new bridge between Burp Suite and Frida!☆1,846Oct 30, 2025Updated 3 months ago
- Burp suite 分块传输辅助插件☆2,022Feb 23, 2022Updated 4 years ago
- A Burp Suite content discovery plugin that add the smart into the Buster!☆379Oct 12, 2020Updated 5 years ago
- JexBoss: Jboss (and Java Deserialization Vulnerabilities) verify and EXploitation Tool☆2,512Jan 21, 2020Updated 6 years ago
- Java RMI enumeration and attack tool.☆745Sep 28, 2017Updated 8 years ago
- ☆2,316Dec 8, 2023Updated 2 years ago
- Vulnerability scanner based on vulners.com search API☆883Oct 1, 2025Updated 4 months ago
- Server-Side Template Injection and Code Injection Detection and Exploitation Tool☆4,120Apr 21, 2024Updated last year
- A collection of curated Java Deserialization Exploits☆591May 16, 2021Updated 4 years ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆8,750Dec 4, 2025Updated 2 months ago
- A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅☆1,895Jan 15, 2026Updated last month
- The successor to reDuh, pwn a bastion webserver and create SOCKS proxies through the DMZ. Pivot and pwn.☆3,152Mar 6, 2025Updated 11 months ago
- Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.☆1,710Dec 1, 2024Updated last year
- Burp被动扫描流量转发插件☆1,459Jun 17, 2024Updated last year
- A tool for embedding XXE/XML exploits into different filetypes☆1,130Dec 16, 2024Updated last year
- Automatically identify deserialisation issues in Java and .NET applications by using active and passive scans☆584Sep 7, 2021Updated 4 years ago
- A blind XXE injection callback handler. Uses HTTP and FTP to extract information. Originally written in Ruby by ONsec-Lab.☆518Jul 29, 2020Updated 5 years ago
- J2EEScan is a plugin for Burp Suite Proxy. The goal of this plugin is to improve the test coverage during web application penetration tes…☆677Oct 29, 2025Updated 3 months ago
- A Tool for Domain Flyovers☆5,906May 22, 2022Updated 3 years ago
- A python script that finds endpoints in JavaScript files☆4,286Apr 13, 2024Updated last year
- Automatic bypass (brute force) waf☆994Mar 9, 2022Updated 3 years ago
- AuthMatrix is a Burp Suite extension that provides a simple way to test authorization in web applications and web services.☆640Mar 7, 2024Updated last year
- HackBar plugin for Burpsuite☆1,619Apr 15, 2021Updated 4 years ago
- Automated HTTP Request Repeating With Burp Suite☆890Dec 15, 2021Updated 4 years ago
- Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.☆8,831Nov 10, 2023Updated 2 years ago
- ☆3,658Jan 9, 2025Updated last year
- A curated list of amazingly awesome Burp Extensions☆3,369Feb 17, 2026Updated last week
- Automatic SSRF fuzzer and exploitation tool☆3,487Sep 4, 2025Updated 5 months ago
- JNDI服务利用工具 RMI/LDAP,支持部分场景回显、内存shell,高版本JDK场景下利用等,fastjson rce命令执行,log4j rce命令执行 漏洞检测辅助工具☆2,012May 21, 2024Updated last year
- Deserialization payload generator for a variety of .NET formatters☆3,674Dec 23, 2024Updated last year
- A swiss army knife for pentesting networks☆9,082Dec 6, 2023Updated 2 years ago
- The iOS Security Testing Framework☆1,383Oct 25, 2020Updated 5 years ago
- Source Code Security Audit (源代码安全审计)☆3,186Sep 16, 2022Updated 3 years ago
- A Burp Suite extension to help pentesters to bypass WAFs or test their effectiveness using a number of techniques☆736May 4, 2019Updated 6 years ago