🔍 Automate OWASP API Top 10 detection with SulphurAPI, a Burp Suite extension for reliable API security testing and advanced OpenAPI parsing.

This Burp extension lets you quickly update the headers of a request inside a Repeater or Intruder tab to newer headers from the same host using the context menu

Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.

Burp Extension for testing authorization issues. Automated request repeating and parameter value extraction on the fly.

A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅

A Burp Suite extension that adds an "SSE" tab to response viewers for parsing and highlighting Server-Side Events.

HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations.

Burp Pro temporary mails via Collaborator

CSTC is a Burp Suite extension that allows request/response modification using a GUI analogous to CyberChef

Auth Mutator is a Burp Suite extension that helps you experiment with mutated authentication requests while keeping the original traffic intact. It applies user-defined replace rules, removes authentication artefacts for unauthenticated probes, and highlights noteworthy responses so you can quickly spot interesting behaviour.

This Burp Suite extension allows the user to upload the identified security issues directly to Pwndoc or export them in various document formats.

A Burp Suite extension that automatically colorizes request/response entries in the Proxy history and other tools, making it easier to spot interesting items at a glance.

一个想让你测试加密流量像测试明文一样简单高效的 Burp 插件。 A Burp plugin that makes testing encrypted traffic as simple and efficient as testing plaintext.

FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application and matches their occurrences in the responses.

CaA - Collector and Analyzer, Insight into information, exploring with intelligence in a thousand ways.

Easy starting point for handling requests in Burp Suite

Burp Suite Extension to allow interaction between requests and command-line tools

Token Tailor is a Burp Suite Community Edition extension that aims to simplify security testing by automating JWT renewal.

Burp Suite extension for automating OWASP API Top 10 detection. Will include dedicated checks (mass assignment, authentication, authorization), OpenID Connect/OAuth2 management, and advanced OpenAPI parsing. Designed to make API security testing more reliable and compliant with BApp Store criteria.

ASP.net ViewState密钥被动扫描爆破BurpSuite插件