Alternatives and similar repositories for burpa

Users that are interested in burpa are comparing it to the libraries listed below

• dumorewithcode / purl

  View on GitHub
  ☆38Aug 27, 2022Updated 3 years ago
• PortSwigger / autowasp

  View on GitHub
  BurpSuite Extension: A one-stop pen testing checklist and logger tool
  ☆270Mar 4, 2023Updated 2 years ago
• Impact-I / x8-Burp

  View on GitHub
  Hidden parameters discovery suite
  ☆225Nov 14, 2022Updated 3 years ago
• geeknik / nuclei-template-generator

  View on GitHub
  A simple tool which makes creating nuclei templates even easier.
  ☆36Jun 23, 2024Updated last year
• yashrs / Hackerone_Private_Hacktivity_Chrome_Extention

  View on GitHub
  ☆18Apr 26, 2021Updated 4 years ago
• MayankPandey01 / Jira-Lens

  View on GitHub
  Fast and customizable vulnerability scanner For JIRA written in Python
  ☆344Dec 31, 2024Updated last year
• vmware-archive / burp-rest-api

  View on GitHub
  REST/JSON API to the Burp Suite security tool.
  ☆562Jul 14, 2025Updated 7 months ago
• devanshbatham / FavFreak

  View on GitHub
  Making Favicon.ico based Recon Great again !
  ☆1,261Aug 29, 2023Updated 2 years ago
• justmorpheus / burp-automation

  View on GitHub
  Performing automated scan using Burp Suite Pro & Vmware Burp Rest API
  ☆52Sep 30, 2022Updated 3 years ago
• kleiton0x00 / ppmap

  View on GitHub
  A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.
  ☆519Jun 22, 2022Updated 3 years ago
• improsec / ImproHound

  View on GitHub
  Identify the attack paths in BloodHound breaking your AD tiering
  ☆326Nov 6, 2022Updated 3 years ago
• Sh1Yo / x8

  View on GitHub
  Hidden parameters discovery suite
  ☆2,015Sep 8, 2024Updated last year
• dwisiswant0 / wadl-dumper

  View on GitHub
  Dump all available paths and/or endpoints on WADL file.
  ☆98Nov 24, 2025Updated 2 months ago
• neex / http2smugl

  View on GitHub
  ☆561Mar 27, 2025Updated 10 months ago
• mdsecresearch / BurpSuiteSharpener

  View on GitHub
  ☆523Jun 5, 2023Updated 2 years ago
• thelikes / fuzzmost

  View on GitHub
  all manner of wordlists
  ☆24Jan 19, 2022Updated 4 years ago
• hahwul / authz0

  View on GitHub
  🔑 Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials.
  ☆427Feb 9, 2026Updated last week
• adanalvarez / SimpleAutoBurp

  View on GitHub
  Python script to launch burp scans automatically
  ☆33Jul 18, 2021Updated 4 years ago
• KathanP19 / protoscan

  View on GitHub
  Prototype Pollution Scanner
  ☆138Apr 11, 2021Updated 4 years ago
• dbrwsky / Nuclei-BurpExtension

  View on GitHub
  Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.
  ☆119Jun 17, 2023Updated 2 years ago
• anshumanpattnaik / http-request-smuggling

  View on GitHub
  HTTP Request Smuggling Detection Tool
  ☆534Dec 21, 2023Updated 2 years ago
• ethicalhackingplayground / gocrawler

  View on GitHub
  ☆33Jun 27, 2022Updated 3 years ago
• honoki / bbrf-client

  View on GitHub
  The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices
  ☆642Jul 7, 2025Updated 7 months ago
• nccgroup / jwt-reauth

  View on GitHub
  ☆105Jan 3, 2023Updated 3 years ago
• sec-consult / aggrokatz

  View on GitHub
  Aggrokatz is an aggressor plugin extension for Cobalt Strike which enables pypykatz to interface with the beacons remotely and allows it …
  ☆156Apr 27, 2021Updated 4 years ago
• xerohackcom / webrecon

  View on GitHub
  Automated Web Recon Shell Scripts
  ☆53Dec 6, 2021Updated 4 years ago
• emadshanab / Nmap-NSE-scripts-collection

  View on GitHub
  ☆176Oct 26, 2025Updated 3 months ago
• Damian89 / extended-ssrf-search

  View on GitHub
  Smart ssrf scanner using different methods like parameter brute forcing in post and get...
  ☆279Feb 11, 2021Updated 5 years ago
• theinfosecguy / QuickXSS

  View on GitHub
  Automating XSS using Bash
  ☆361Jan 27, 2026Updated 3 weeks ago
• KathanP19 / JSFScan.sh

  View on GitHub
  Automation for javascript recon in bug bounty.
  ☆1,067Sep 9, 2023Updated 2 years ago
• wallarm / jwt-heartbreaker

  View on GitHub
  The Burp extension to check JWT (JSON Web Tokens) for using keys from known from public sources
  ☆138Sep 21, 2020Updated 5 years ago
• Hackmanit / Web-Cache-Vulnerability-Scanner

  View on GitHub
  Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hac…
  ☆1,148Jan 21, 2026Updated 3 weeks ago
• oldboy21 / SMBSR

  View on GitHub
  Lookup for interesting stuff in SMB shares
  ☆150Jun 16, 2023Updated 2 years ago
• ghsec / ghsec-jaeles-signatures

  View on GitHub
  Signatures for jaeles scanner by @j3ssie
  ☆117Apr 20, 2024Updated last year
• r0075h3ll / Oralyzer

  View on GitHub
  Open Redirection Analyzer
  ☆811Mar 5, 2023Updated 2 years ago
• raverrr / plution

  View on GitHub
  Prototype pollution scanner using headless chrome
  ☆218Jul 27, 2022Updated 3 years ago
• detectify / page-fetch

  View on GitHub
  Fetch web pages using headless Chrome, storing all fetched resources including JavaScript files. Run arbitrary JavaScript on many web pag…
  ☆528Apr 23, 2025Updated 9 months ago
• bp0lr / dmut

  View on GitHub
  A tool to perform permutations, mutations and alteration of subdomains in golang.
  ☆155Nov 24, 2023Updated 2 years ago
• wagiro / BurpBounty

  View on GitHub
  Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…
  ☆1,770Apr 26, 2024Updated last year