VULNRΞPO - Free vulnerability report generator and repository, end-to-end encrypted! Templates of issues, CWE, CVE, MITRE ATT&CK, PCI DSS, import Nmap/Nessus/Burp/OpenVAS/Bugcrowd/Trivy, Jira export, TXT/JSON/MARKDOWN/HTML/PDF report, attachments, automatic changelog, statistics, vulnerability management, bug bounty, pentest reporting, auditor!

CSTC is a Burp Suite extension that allows request/response modification using a GUI analogous to CyberChef

A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅

Cyber Security ALL-IN-ONE Platform

百宝箱

Commodity Injection Signatures, Malicious Inputs, XSS, HTTP Header Injection, XXE, RCE, Javascript, XSLT

HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations.

FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application and matches their occurrences in the responses.

有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file

Open Source Vulnerability Management Platform

Burp HTTP history browser (BHHB) - A tool to view HTTP history exported from Burp Suite Community Edition

Burp Suite extension that extracts parameters to Excel and the Clipboard.

In the repository I'll show you how to install Burp Suite Professional on your unix based operating system.

Fuzzing Wordlists

Attack Vectors, Tools, Monitoring&SIEM, Intrusion Detection

Scripts to set up your own Android 📱 app hacking lab

jobTools

This is an automated script for installing BurpSuite certificate in Android devices.

一个将socks5协议转化为http和https协议的工具

A Burp extension generates dynamic payloads to uncover injection flaws (LFI, RCE, SQLi), creates user access tables to identify authentication and authorization issues, attempts to bypass HTTP 403 access restrictions, and converts HTTP requests as JavaScript code for enhanced XSS exploitation.