77 Open Source Burp Software Projects
Free and open source burp code projects including engines, APIs, generators, and tools.
Awesome Burp Suite 824 ⭐
Awesome Burp Suite Resources. 400+ open source Burp plugins, 400+ posts and videos.
Burpa 455 ⭐
Burp-Automator: A Burp Suite Automation Tool with Slack Integration. It can be used with Jenkins and Selenium to automate Dynamic Application Security Testing (DAST).
Commodity Injection Signatures 288 ⭐
Content Bruteforcing Wordlist 182 ⭐
Wordlist for content(directory) bruteforce discovering with Burp or dirsearch
Blackboxprotobuf 206 ⭐
Blackbox protobuf is a Burp Suite extension for decoding and modifying arbitrary protobuf messages without the protobuf type definition.
Rescope 238 ⭐
Rescope is a tool geared towards pentesters and bugbounty researchers, that aims to make life easier when defining scopes for Burp Suite and OWASP ZAP.
Kapytein JSonp 140 ⭐
jsonp is a Burp Extension which attempts to reveal JSONP functionality behind JSON endpoints. This could help reveal cross-site script inclusion vulnerabilities or aid in bypassing content security policies.
Csp Auditor 126 ⭐
Burp and ZAP plugin to analyse Content-Security-Policy headers or generate template CSP configuration from crawling a Website
Wase 106 ⭐
The Web Audit Search Engine - Index and Search HTTP Requests and Responses in Web Application Audits with ElasticSearch
Privatecollaborator 93 ⭐
A script for installing private Burp Collaborator with free Let's Encrypt SSL-certificate
Report Ng 60 ⭐
Generate MS Word template-based reports with HP WebInspect / Burp Suite Pro input, own custom data and knowledge base.
Sink Logger 48 ⭐
Burp Suite Error Message Checks 48 ⭐
Burp Suite extension to passively scan for applications revealing server error messages
Similar Request Excluder 44 ⭐
A Burp Suite extension that automatically marks similar requests as 'out-of-scope'.
Burp Suite Http Proxy History Converter 57 ⭐
Python script that converts Burp Suite HTTP proxy history files to CSV or HTML
Bearerauthtoken 42 ⭐
This burpsuite extender provides a solution on testing Enterprise applications that involve security Authorization tokens into every HTTP requests.Furthermore, this solution provides a better approach to solve the problem of Burp suite automated scanning failures when Authorization tokens exist.
Burp Flow 42 ⭐
Extension providing view with filtering capabilities for both complete and incomplete requests from all burp tools.
Burp Ntlm Challenge Decoder 28 ⭐
Burp extension to decode NTLM SSP headers and extract domain/host information
Burp Aem Scanner 46 ⭐
Burp Scanner extension to fingerprint and actively scan instances of the Adobe Experience Manager CMS. It checks the website for common misconfigurations and security holes.
Burp Wildcard 44 ⭐
Burp extension intended to compact Burp extension tabs by hijacking them to own tab.
Burp Suite Software Version Checks 30 ⭐
Burp extension to passively scan for applications revealing software version numbers
Turbodataminer 33 ⭐
The objective of this Burp Suite extension is the flexible and dynamic extraction, correlation, and structured presentation of information from the Burp Suite project as well as the flexible and dynamic on-the-fly modification of outgoing or incoming HTTP requests using Python scripts. Thus, Turbo Data Miner shall aid in gaining a better and faster understanding of the data collected by Burp Suite.
Jdser Dcomp 18 ⭐
A Burp Extender plugin that will allow you to tamper with requests containing compressed, serialized java objects.
Poi Slinger 28 ⭐
Automatically identify serialization issues in PHP Frameworks by means of an Burp Suite active scan
Android Nougat Ssl Intercept 15 ⭐
It decompiles target apk and adds security exception to accept all certificates thus making able to work with Burp/Charles and Other Tools
Burp Suite Gwt Scan 12 ⭐
Burp Suite plugin identifies insertion points for GWT (Google Web Toolkit) requests
Null 13 ⭐
Target Redirector is a Burp Suite Extension written in Kotlin, which redirects all Burp requests destined for a chosen target to a different target of your choice. The hostname/IP, port and protocol (HTTP/HTTPS) can all be configured to an alternative destination.
Null 413 ⭐
HopLa Burp Suite Extender plugin - Adds autocompletion support and useful payloads in Burp Suite
Null 14 ⭐
Burp Suite Extension - Trigger actions and reshape HTTP request and response traffic using configurable rules
Null 14 ⭐