Burp Suite plugin identifies insertion points for GWT (Google Web Toolkit) requests

J2EEScan is a plugin for Burp Suite Proxy. The goal of this plugin is to improve the test coverage during web application penetration tests on J2EE applications.

burp extension for generating the scanner reports

Add headers to all Burp requests to bypass some WAF products

StaticAnalyzer is a burp plugin that can be used to perform static analysis of the response information from server during run time. It will search for specific words in the response that is mentioned in the vectors.txt

Kerberos / SPNEGO authentication for BurpSuite

Extension for semi-automated search for second order issues in webapps

BurpSuite Extension for performing scan via CLI.

Security checks pack for Burp Suite

Provides a suite of Burp extensions and a maven plugin to automate security tests using BurpSuite.

Burp extension for automated handling of CSRF tokens

Burp Extender plugin that generates a sitemap of a website using Wayback Machine

burp extender for fuzzing

Burp extension to specify the token value for the Authenication header while scanning.

Burp extension to replace a header value on-demand while performing a scan.

A Burp Suite extension to help pentesters to bypass WAFs or test their effectiveness using a number of techniques

Copy as JavaScript Request plugin for Burp Suite

Burp Show Response Time

Burp extension to generate multi-step CSRF POC.