A Burp Suite Extension to extract interesting strings (key, secret, token, or etc.) from a webpage.
☆312Jul 9, 2024Updated last year
Alternatives and similar repositories for BurpSuite-Xkeys
Users that are interested in BurpSuite-Xkeys are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Messy BurpSuite plugin for SQL Truncation vulnerabilities.☆65Apr 17, 2020Updated 6 years ago
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…☆1,807Apr 26, 2024Updated 2 years ago
- ☆21Dec 29, 2024Updated last year
- Tool for checking reflecting Parameters in a URL.☆10Aug 31, 2020Updated 5 years ago
- A Payload Injector for bugbounties written in go☆70Jul 18, 2020Updated 5 years ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- QUESTER is a Web Pentesting & Bug Bounty Recon tool which queries URLs / Subdomains from the given list of URLs or subdomains.☆15Aug 2, 2021Updated 4 years ago
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆167Mar 5, 2021Updated 5 years ago
- Pipe different tools with google dork Scanner☆56Jun 25, 2020Updated 6 years ago
- Burpsuite Plugin to detect Directory Traversal vulnerabilities☆27Jul 22, 2021Updated 4 years ago
- It becomes the extension of Burp suite. The cookie set by the BipIP server may include a private IP, which is an extension to detect tha…☆16Mar 10, 2026Updated 3 months ago
- ☆145Jul 25, 2022Updated 3 years ago
- A Burp Suite extension made to automate the process of finding reverse proxy path based SSRF.☆184Nov 22, 2021Updated 4 years ago
- BBT - Bug Bounty Tools (examples💡)☆1,900Apr 5, 2024Updated 2 years ago
- Useful "Match and Replace" burpsuite rules☆373Sep 26, 2023Updated 2 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- burpsuite extension for check and extract sensitive request parameter☆118Nov 29, 2020Updated 5 years ago
- A Burp Suite extension to help pentesters to bypass WAFs or test their effectiveness using a number of techniques☆745May 4, 2019Updated 7 years ago
- SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files☆2,473May 26, 2024Updated 2 years ago
- SSRF plugin for burp Automates SSRF Detection in all of the Request☆629Jan 20, 2021Updated 5 years ago
- Burpsuite Extension to bypass 403 restricted directory☆1,692Jun 29, 2023Updated 3 years ago
- Burp Extension for easily creating Wordlists☆222Oct 5, 2021Updated 4 years ago
- SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibil…☆157Aug 21, 2020Updated 5 years ago
- Command line tool for testing CRLF injection on a list of domains.☆163Apr 14, 2024Updated 2 years ago
- A tool for append URLs, skipping duplicates/paths & combine parameters.☆129Mar 2, 2022Updated 4 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Adds a customizable "Send to..."-context-menu to your BurpSuite.☆169Nov 27, 2022Updated 3 years ago
- Fetches javascript file from a list of URLS or subdomains.☆855Jul 22, 2025Updated 11 months ago
- Burp extension to generate multi-step CSRF POC.☆31Sep 23, 2019Updated 6 years ago
- An automated SSRF finder. Just give the domain name and your server and chill! ;) Also has options to find XSS and open redirects☆969Dec 8, 2021Updated 4 years ago
- Burp Suite extension to discover assets from HTTP response.☆235Jan 22, 2025Updated last year
- Secret and/or credential patterns used for gf.☆245Feb 10, 2023Updated 3 years ago
- DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it☆453Jan 9, 2024Updated 2 years ago
- Hidden parameters discovery suite☆225Nov 14, 2022Updated 3 years ago
- Reestructured LemonBooster.☆47Jul 26, 2024Updated last year
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Burp Extension to find potential endpoints, parameters, and generate a custom target wordlist☆1,523Jan 8, 2026Updated 5 months ago
- Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"☆358Oct 14, 2020Updated 5 years ago
- Smart ssrf scanner using different methods like parameter brute forcing in post and get...☆277Feb 11, 2021Updated 5 years ago
- HTTP file upload scanner for Burp Proxy☆494Dec 25, 2023Updated 2 years ago
- ☆32Apr 6, 2021Updated 5 years ago
- My fuzz repo!☆23Jul 28, 2023Updated 2 years ago
- Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3☆2,084Jan 2, 2024Updated 2 years ago