tomsteele/burpbuddy

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/tomsteele/burpbuddy)

tomsteele / burpbuddy

burpbuddy exposes Burp Suites's extender API over the network through various mediums, with the goal of enabling development in any language without the restrictions of the JVM

☆158

Alternatives and similar repositories for burpbuddy

Users that are interested in burpbuddy are comparing it to the libraries listed below

Sorting:

tomsteele / burpstaticscan
View on GitHub
Use burp's JS static code analysis on code from your local system.
☆43Dec 22, 2016Updated 9 years ago
ssexxe / XXEBugFind
View on GitHub
A tool for detecting XML External Entity (XXE) vulnerabilities in Java applications
☆72Sep 4, 2014Updated 11 years ago
floyd-fuh / burp-HttpFuzzer
View on GitHub
Burp plugin to do random fuzzing of HTTP requests
☆33Jan 31, 2017Updated 9 years ago
jfoote / burp-git-bridge
View on GitHub
Store Burp data and collaborate via git
☆53Oct 31, 2019Updated 6 years ago
vmware-archive / burp-rest-api
View on GitHub
REST/JSON API to the Burp Suite security tool.
☆563Jul 14, 2025Updated 7 months ago
moloch-- / CSP-Bypass
View on GitHub
A Burp Plugin for Detecting Weaknesses in Content Security Policies
☆166May 19, 2023Updated 2 years ago
iriusrisk / resty-burp
View on GitHub
REST/JSON interface to Burp Suite
☆33Oct 12, 2020Updated 5 years ago
pathetiq / BurpSmartBuster
View on GitHub
A Burp Suite content discovery plugin that add the smart into the Buster!
☆378Oct 12, 2020Updated 5 years ago
silentsignal / burp-image-size
View on GitHub
Image size issues plugin for Burp Suite
☆95Jun 27, 2018Updated 7 years ago
nccgroup / pcap-burp
View on GitHub
Pcap importer for Burp
☆110Jun 27, 2021Updated 4 years ago
dnet / burp-oauth
View on GitHub
OAuth plugin for Burp Suite Extender
☆43Jun 27, 2018Updated 7 years ago
nccgroup / Decoder-Improved
View on GitHub
Improved decoder for Burp Suite
☆138Aug 30, 2021Updated 4 years ago
PaulSec / CSRFT
View on GitHub
A lightweight CSRF Toolkit for easy Proof of concept
☆172Jun 11, 2014Updated 11 years ago
vah13 / BurpCRLFPlugin
View on GitHub
Another plugin for CRLF vulnerability detection
☆25Jan 25, 2017Updated 9 years ago
ikkisoft / bradamsa
View on GitHub
Burp Suite extension to generate Intruder payloads using Radamsa
☆89Sep 7, 2017Updated 8 years ago
jfoote / vulture
View on GitHub
Analyzes open source bug trackers for interesting vulnerabilities
☆23Feb 3, 2015Updated 11 years ago
allfro / BurpKit
View on GitHub
Next-gen BurpSuite penetration testing tool
☆460Jan 27, 2016Updated 10 years ago
thomaspatzke / Burp-SessionAuthTool
View on GitHub
Burp plugin which supports in finding privilege escalation vulnerabilities
☆41Apr 22, 2022Updated 3 years ago
mandatoryprogrammer / xssless
View on GitHub
An automated XSS payload generator written in python.
☆314Jun 2, 2016Updated 9 years ago
nccgroup / autopwn
View on GitHub
Specify targets and run sets of tools against them
☆386Apr 23, 2019Updated 6 years ago
tomekr / BurpFlashCSRFBuilder
View on GitHub
Generates Flash based CORS CSRF Proof of Concepts that can be sent directly to clients
☆14Jul 3, 2013Updated 12 years ago
moloch-- / MitmFuzzer
View on GitHub
A fuzzing script for MitmProxy
☆24May 15, 2015Updated 10 years ago
0ang3el / Hibernate-Injection-Study
View on GitHub
Study about HQL injection exploitation.
☆51May 15, 2016Updated 9 years ago
omarkurt / cve-2014-0130
View on GitHub
cve-2014-0130 rails directory traversal vuln
☆19May 15, 2017Updated 8 years ago
salesforce / vulnreport
View on GitHub
Open-source pentesting management and automation platform by Salesforce Product Security
☆599Feb 12, 2022Updated 4 years ago
roglew / pappy-proxy
View on GitHub
An intercepting proxy for web application testing
☆411Nov 20, 2018Updated 7 years ago
strozfriedberg / xxe-recursive-download
View on GitHub
☆231Nov 18, 2015Updated 10 years ago
GrrrDog / ACEDcup
View on GitHub
Payload generator for Java Binary Deserialization attack with Commons FileUpload (CVE-2013-2186)
☆38Apr 14, 2016Updated 9 years ago
malerisch / burp-csj
View on GitHub
BurpCSJ extension for Burp Pro - Crawljax Selenium JUnit integration
☆34Dec 22, 2014Updated 11 years ago
nccgroup / WCFDSer-ngng
View on GitHub
A Burp Extender plugin, that will make binary soap objects readable and modifiable.
☆29Feb 21, 2022Updated 4 years ago
byt3bl33d3r / BeEF-API
View on GitHub
Python library that facilitates interfacing with BeEF via it's RESTful API
☆79May 18, 2017Updated 8 years ago
Maleus / Enumerator
View on GitHub
☆17Oct 5, 2014Updated 11 years ago
anshumanbh / brutesubs
View on GitHub
An automation framework for running multiple open sourced subdomain bruteforcing tools (in parallel) using your own wordlists via Docker …
☆260Aug 22, 2021Updated 4 years ago
JGillam / burp-paramalyzer
View on GitHub
Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.
☆158Jul 10, 2025Updated 7 months ago
VirtueSecurity / aws-extender
View on GitHub
AWS Extender (Cloud Storage Tester) is a Burp plugin to assess permissions of cloud storage containers on AWS, Google Cloud and Azure.
☆256Feb 23, 2022Updated 4 years ago
Contrast-Security-OSS / jinfinity
View on GitHub
An API for consuming all the memory of Java apps using deserialization
☆28Jan 10, 2016Updated 10 years ago
bdamele / unix-privesc-check
View on GitHub
Shell script that runs on UNIX systems (tested on Solaris 9, HPUX 11, various Linux distributions, FreeBSD 6.2). It detects misconfigurat…
☆87Sep 26, 2016Updated 9 years ago
nccgroup / BinProxy
View on GitHub
BinProxy is a proxy for arbitrary TCP connections. You can define custom message formats using the BinData gem.
☆176Dec 1, 2022Updated 3 years ago
NetSPI / MoneyX
View on GitHub
MoneyX is an intentionally vulnerable JSP application used for training developers in application security concepts.
☆31May 10, 2016Updated 9 years ago