Stars
Ghidra is a software reverse engineering (SRE) framework
A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies.
SpotBugs is FindBugs' successor. A tool for static analysis to look for bugs in Java code.
jSQL Injection is a Java application for automatic SQL database injection.
TCP/UDP Non-HTTP Proxy Extension (NoPE) for Burp Suite.
latest version of scanners for IIS short filename (8.3) disclosure vulnerability
Burp plugin able to find reflected XSS on page in real-time while browsing on site
This repository will serve as the "master" repo containing all trainings and tutorials done in preperation for OSWE in conjunction with the AWAE course. This repo will likely contain custom code by…
Automated HTTP Request Repeating With Burp Suite
Vulnerability scanner based on vulners.com search API
All-in-one plugin for Burp Suite for the detection and the exploitation of Java deserialization vulnerabilities
A Burp Suite extension to help pentesters to bypass WAFs or test their effectiveness using a number of techniques
This is a burp intruder extender that is designed for automation and validation of XSS vulnerabilities.
Research on GraphQL from an AppSec point of view.
A collection of reverse engineering challenges for learning about the Android operating system and mobile security.
Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"
😈 Jenkins RCE PoC. From unauthenticated user to remote code execution, it's a hacker's dream!
A natural evolution of Burp Suite's Repeater tool
Adds a customizable "Send to..."-context-menu to your BurpSuite.
This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.
Everything you need about Burp Extension Generation