Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease application security people work and allow them perform an automatic authorization tests
burpsuite extension for check unauthorized vulnerability
A Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).
Burp Suite extension for bypassing client-side encryption for pentesting and bug bounty
A Burp Plugin for Detecting Weaknesses in Content Security Policies
SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibility of manual testing with many powerful evasion techniques.
The Web Audit Search Engine - Index and Search HTTP Requests and Responses in Web Application Audits with ElasticSearch
A Burp Suite Extension for pentester and bug bounty hunters an to maintain checklist, map flows, write test cases and track vulnerabilities
burpsuite extension for check and extract sensitive request parameter
BurpSuite extension to inject custom cross-site scripting payloads on every form/request submitted to detect blind XSS vulnerabilities
SQL injection script for MSSQL that extracts domain users from an Active Directory environment based on RID bruteforcing
A Burp Suite plugin/extension that offers a shell in Burp. Both useful for OS Command injection and LFI exploration
The objective of this Burp Suite extension is the flexible and dynamic extraction, correlation, and structured presentation of information from the Burp Suite project as well as the flexible and dynamic on-the-fly modification of outgoing or incoming HTTP requests using Python scripts. Thus, Turbo Data Miner shall aid in gaining a better and fas…
A simple plugin to export JS files from one or multiple targets
This Burp extension extracts various data (path, parameter keys, parameter values, subdomains, etc.) from the sitemap. This data is used to create custom wordlists for directory/dns/parameter brute-forcing.
Burp Suite extensions if you want to teach Burp a new Transport-Encoding
XSS filter bypass extension for PortSwigger Burp Suite.
Burp Suite plugin that plays sound effects when issues are found.
Burp extension to import Postman collections and create Repeater tabs
Add a description, image, and links to the burp-plugin topic page so that developers can more easily learn about it.
To associate your repository with the burp-plugin topic, visit your repo's landing page and select "manage topics."