CSTC is a Burp Suite extension that allows request/response modification using a GUI analogous to CyberChef

Burp Suite extensions for analyzing requests and responses using an organization-controlled LLM, instead of Burp AI.

Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.

A Burp Suite extension that automatically colorizes request/response entries in the Proxy history and other tools, making it easier to spot interesting items at a glance.

Burp Suite extension for bypassing client-side encryption for pentesting and bug bounty

It becomes the extension of Burp suite. The cookie set by the BipIP server may include a private IP, which is an extension to detect that IP

Burpsuite extension. Supports CJK (Chinese, Japanese, Korean) encoding.

A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅

Burp Pro temporary mails via Collaborator

A Burp Suite extension that allows you to automatically inject custom HTTP headers into all outgoing requests.

Burp Suite extension for inspecting, copying, searching, and modifying MIME types in HTTP messages.

Burp Suite extension for copying HTTP requests/responses with header filtering.

Auth Mutator is a Burp Suite extension that helps you experiment with mutated authentication requests while keeping the original traffic intact. It applies user-defined replace rules, removes authentication artefacts for unauthenticated probes, and highlights noteworthy responses so you can quickly spot interesting behaviour.

Burp插件，快速探测可能存在SQL注入的请求并标记，提高测试效率

A Burp Suite extension that brings full DOM rendering capabilities directly into Burp, enabling effective security testing of modern JavaScript-heavy applications built with frameworks like ReactJS, VueJS, Angular, and more.

This Burp extension lets you quickly update the headers of a request inside a Repeater or Intruder tab to newer headers from the same host using the context menu

PyBurp is a Burp Suite extension that provides predefined Python functions for HTTP/WebSocket traffic modification, context menu registration, Intruder payload processing, passive/active scanning, and Collaborator interaction. You can also directly access Montoya API in your Python scripts.

Burpsuite extension. Supports ASP.NET ViewStateDecoder

This Burp Suite extension allows the user to upload the identified security issues directly to Pwndoc or export them in various document formats.

A Burp Suite extension that imports Postman, Swagger, Openapi .json files directly into Burp. It parses requests (method, URL, headers, body) and displays them in a table, allowing users to send selected requests to Repeater.