A cli tool that helps signing and zip aligning single or multiple Android application packages (APKs) with either debug or provided release certificates. It supports v1, v2 and v3 Android signing s…

TCP/UDP Non-HTTP Proxy Extension (NoPE) for Burp Suite.

TLS-Attacker is a Java-based framework for analyzing TLS libraries. It can be used to manually test TLS clients and servers or as as a software library for more advanced tools.

Bypass SSL certificate pinning for most applications

J2EEScan is a plugin for Burp Suite Proxy. The goal of this plugin is to improve the test coverage during web application penetration tests on J2EE applications.

Pen Test Report Generation and Assessment Collaboration

Mallet is an intercepting proxy for arbitrary protocols

PETEP (PEnetration TEsting Proxy) is an open-source Java application for traffic analysis & modification using TCP/UDP proxies. PETEP is a useful tool for performing penetration tests of applicatio…

Quickly add http and https domains to BurpSuite's scope with all paths.

Maven plugin for creating GitHub releases

The Faction Burp Suite Extension

Example Faction Plugin to Send Issus to Jira.