A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities and enables running traffic-based analysis of any type.
-
Updated
Jun 9, 2024 - Java
A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities and enables running traffic-based analysis of any type.
TCP/UDP Non-HTTP Proxy Extension (NoPE) for Burp Suite.
🐱💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks
Java RMI Vulnerability Scanner
Damn Vulnerable Bank is designed to be an intentionally vulnerable android application. This provides an interface to assess your android application security hacking skills.
Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.
Burpsuite-Plugins-Usage
ShotDroid is a pentesting tool for android. There are 3 tools that have their respective functions, Get files from Android directory, internal and external storage, Android Keylogger + Reverse Shell and Take a webcam shot of the face from the front camera of the phone and PC.
Intercept, modify, repeat and attack Android's Binder transactions using Burp Suite
A backdoor with a multitude of features.
Penetration testing and auditing toolkit for Android apps.
This Burp Suite extension allows for the automatic creation and deletion of an upstream SOCKS5 proxy on popular cloud services.
Parse OpenAPI documents into Burp Suite for automating OpenAPI-based APIs security assessments (approved by PortSwigger for inclusion in their official BApp Store).
PETEP (PEnetration TEsting Proxy) is an open-source Java application for traffic analysis & modification using TCP/UDP proxies. PETEP is a useful tool for performing penetration tests of applications with various application protocols. ⚡
Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.
A burp suite extension that reviews backup, old, temporary and unreferenced files on web server for sensitive information (OWASP WSTG-CONF-04, OTG-CONFIG-004)
Adds a customizable "Send to..."-context-menu to your BurpSuite.
The Android Agent for the Drozer Security Assessment Framework.
The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
PROJECT DELTA: SDN SECURITY EVALUATION FRAMEWORK
Add a description, image, and links to the pentesting topic page so that developers can more easily learn about it.
To associate your repository with the pentesting topic, visit your repo's landing page and select "manage topics."