InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.
-
Updated
Jun 24, 2024 - Python
InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.
A Burp Suite extension to add OpenAI (GPT) on Burp and help you with your Bug Bounty recon to discover endpoints, params, URLs, subdomains and more!
A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues
A Burp extension generates dynamic payloads to uncover injection flaws (LFI, RCE, SQLi), creates user access tables to identify authentication and authorization issues, attempts to bypass HTTP 403 access restrictions, and converts HTTP requests as JavaScript code for enhanced XSS exploitation.
A Burp Suite Extension to extract interesting strings (key, secret, token, or etc.) from a webpage.
A Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).
Burp Suite extension for bypassing client-side encryption for pentesting and bug bounty
Exporter is a Burp Suite extension to copy a request to a file or the clipboard as multiple programming languages functions.
SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibility of manual testing with many powerful evasion techniques.
jsonp is a Burp Extension which attempts to reveal JSONP functionality behind JSON endpoints.
gRPC-Web Pentesting Suite + Burp Suite Extension
A BurpSuite extension to create a custom word-list of endpoint and parameters for enumeration and fuzzing
A Burp Suite Extension for pentester and bug bounty hunters an to maintain checklist, map flows, write test cases and track vulnerabilities
BurpSuite extension to inject custom cross-site scripting payloads on every form/request submitted to detect blind XSS vulnerabilities
Burp Extension that copies a request and builds a FFUF skeleton
SQL injection script for MSSQL that extracts domain users from an Active Directory environment based on RID bruteforcing
A Burp Suite plugin/extension that offers a shell in Burp. Both useful for OS Command injection and LFI exploration
burpsuite 插件对GP所有参数(过滤特殊参数)一键自动添加xss sql payload 进行fuzz
Mole is a framework for identifying and exploiting out-of-band application vulnerabilities.
Add a description, image, and links to the burp-extensions topic page so that developers can more easily learn about it.
To associate your repository with the burp-extensions topic, visit your repo's landing page and select "manage topics."