Skip to content

Charseki/BurpExtensions

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

7 Commits

static/img

static/img

 
 

BurpCustomizer-1.0.3.jar

BurpCustomizer-1.0.3.jar

 
 

BurpShiroPassiveScan-2.0.0-jdk1.8.zip

BurpShiroPassiveScan-2.0.0-jdk1.8.zip

 
 

LoggerPlusPlus.jar

LoggerPlusPlus.jar

 
 

README.md

README.md

 
 

chunked-coding-converter-0.4.0.jar

chunked-coding-converter-0.4.0.jar

 
 

fakeIP.jar

fakeIP.jar

 
 

passive-scan-client-0.3.0.jar

passive-scan-client-0.3.0.jar

 
 

Repository files navigation

BurpExtensions

On the way to collect BurpExtensions

fakeIP

服务端配置错误情况下用于伪造ip地址进行测试的Burp Suite插件

  • 伪造指定ip
  • 伪造本地ip
  • 伪造随机ip
  • 随机ip爆破

Github地址: https://github.com/TheKingOfDuck/burpFakeIP

Chunked coding converter

本插件主要用于分块传输绕WAF,不了解分块传输绕WAF的请参考下述文章。

Github地址: https://github.com/c0ny1/chunked-coding-converter

BurpCustomizer

新版burp皮肤切换插件,自带几十种皮肤(仅支持2020.12及以上版本的burp)

Images:

Atom One Dark

Atom One Dark Customizer

Atom One Dark Repeater

Atom One Dark Logger

Dark Purple

Dark Purple Customizer

Dark Purple Repeater

Dark Purple Logger

And 56 more themes!

Github地址: https://github.com/CoreyD97/BurpCustomizer

BurpShiroPassiveScan

一款基于BurpSuite的被动式shiro检测插件,可以节省一些渗透时间更好地进行划水。

该插件会对BurpSuite传进来的每个不同的域名+端口的流量进行一次shiro检测

目前的功能如下

  • shiro框架指纹检测
  • shiro加密key检测,cbc,gcm

Github地址: https://github.com/pmiaowu/BurpShiroPassiveScan

Passive Scan Client

Burp被动扫描流量转发插件

Q1: 将浏览器代理到被动扫描器上,访问网站变慢,甚至有时被封ip,这该怎么办?
Q2: 需要人工渗透的同时后台进行被动扫描,到底是代理到burp还是被动扫描器?
Q3: ......

该插件正是为了解决该问题,将正常访问网站的流量提交给被动扫描器的流量分开,互不影响。

流程图

Github地址: https://github.com/c0ny1/passive-scan-client

About

On the way to collect BurpExtensions

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published