CSTC is a Burp Suite extension that allows request/response modification using a GUI analogous to CyberChef
☆257Mar 5, 2026Updated this week
Alternatives and similar repositories for cstc
Users that are interested in cstc are comparing it to the libraries listed below
Sorting:
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…☆165Oct 28, 2025Updated 4 months ago
- qsinject (Query String Inject) is a tool that allows you to quickly substitute query string values with regex matches, one-at-a-time.☆30May 6, 2020Updated 5 years ago
- Burp Suite extension for testing Passkey systems.☆75Apr 1, 2025Updated 11 months ago
- Piper Burp Suite Extender plugin☆129Jan 14, 2026Updated last month
- ☆22Mar 1, 2022Updated 4 years ago
- YARA detection rule for CVE-2024-4367 arbitrary javascript execution in PDF.js☆11May 27, 2024Updated last year
- Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"☆356Oct 14, 2020Updated 5 years ago
- Burp Suite Extension - Trigger actions and reshape HTTP request/response and WebSocket traffic using configurable rules☆107Nov 16, 2025Updated 3 months ago
- A tool for collecting RDP, web and VNC screenshots all in one place☆482Apr 3, 2023Updated 2 years ago
- ☆523Jun 5, 2023Updated 2 years ago
- SQL injection script for MSSQL that extracts domain users from an Active Directory environment based on RID bruteforcing☆91May 10, 2020Updated 5 years ago
- The objective of this Burp Suite extension is the flexible and dynamic extraction, correlation, and structured presentation of informatio…☆59Dec 31, 2022Updated 3 years ago
- A Burp Suite extension for Lightning/Aura framework security testing with advanced action management, context editing, and comprehensive …☆54Nov 17, 2025Updated 3 months ago
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability☆953Dec 31, 2021Updated 4 years ago
- Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.☆613Mar 4, 2021Updated 5 years ago
- Burp extension to filter JSON on the fly with JQ queries in the HTTP message viewer.☆47Dec 24, 2020Updated 5 years ago
- A Chrome Extension to track postMessage usage (url, domain and stack) both by logging using CORS and also visually as an extension-icon☆1,293Jan 26, 2024Updated 2 years ago
- ☆14Jul 9, 2024Updated last year
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…☆1,774Apr 26, 2024Updated last year
- Bugbounty scope tool☆332Mar 5, 2025Updated last year
- Burp Plugin to Bypass WAFs through the insertion of Junk Data☆1,426Jul 14, 2025Updated 7 months ago
- This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …☆259Oct 16, 2022Updated 3 years ago
- Burp Extension that copies a request and builds a FFUF skeleton☆113Sep 29, 2023Updated 2 years ago
- Contextual Content Discovery Tool☆3,106Apr 29, 2024Updated last year
- ☆105Jan 3, 2023Updated 3 years ago
- InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable…☆1,737Feb 16, 2026Updated 2 weeks ago
- jsluice++ is a Burp Suite extension designed for passive and active scanning of JavaScript traffic using the CLI tool jsluice☆291Apr 9, 2024Updated last year
- A Burp Suite Extension for parsing Project Files from the CLI.☆91Jan 16, 2026Updated last month
- Convolutional neural network for analyzing pentest screenshots☆1,280Feb 19, 2024Updated 2 years ago
- latest version of scanners for IIS short filename (8.3) disclosure vulnerability☆1,632Sep 3, 2023Updated 2 years ago
- Advanced Burp Suite Logging Extension☆693May 31, 2024Updated last year
- A research project to add some brrrrrr to Burp☆207Feb 16, 2026Updated 2 weeks ago
- Find cloud assets that no one wants exposed 🔎 ☁️☆348Jul 20, 2020Updated 5 years ago
- An IIS short filename enumeration tool☆1,126Nov 25, 2024Updated last year
- Hunt every Endpoint in your code, expose Shadow APIs, map the Attack Surface.☆1,108Updated this week
- masscan with exclusive excludes☆58Nov 8, 2023Updated 2 years ago
- ☆562Mar 27, 2025Updated 11 months ago
- ☆695Jul 4, 2022Updated 3 years ago
- PwnFox is a Firefox/Burp extension that provide usefull tools for your security audit.☆1,292Aug 7, 2024Updated last year