A Burp Suite extension to add OpenAI (GPT) on Burp and help you with your Bug Bounty recon to discover endpoints, params, URLs, subdomains and more!
-
Updated
May 3, 2023 - Python
#
burp-extensions
Here are 81 public repositories matching this topic...
A Burp extension helps identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violations, while also converting HTTP requests to JavaScript for enhanced XSS exploitation.
hacking cybersecurity penetration-testing application-security pentesting appsec hacking-tool burpsuite offsec burp-extensions offensivesecurity
-
Updated
Jul 28, 2025 - Python
A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues
-
Updated
Jul 25, 2023 - Python
🧿 AutorizePro是一款强大越权检测 Burp 插件,通过增加 AI 辅助分析 && 进一步优化检测逻辑,大幅降低误报率,提升越权漏洞检出效率。 [ AutorizePro is a authorization enforcement detection extension for burp suite. By adding Ai-assisted analysis, it significantly reduces the false positive rate and improves the efficiency of vulnerability detection.
ai authorization pentesting bugbounty vulnerability-detection burpsuite security-tools burp-extensions pentest-tool bounty-hunters idor unauthorized sdlc-tools bounty-hunting-tools broken-access-control llm idor-vulnerability unauthorized-access-tool
-
Updated
Jun 21, 2025 - Python
A Burp Suite Extension to extract interesting strings (key, secret, token, or etc.) from a webpage.
-
Updated
Jul 9, 2024 - Python
gRPC-Web Pentesting Suite + Burp Suite Extension / Hack gRPC-Web Applications
extension protobuf protocol-buffers grpc burp burpsuite grpc-web burp-extensions pentesting-grpc grpc-pentesting grpc-tool
-
Updated
Feb 24, 2025 - Python
Burp Suite extension for bypassing client-side encryption for pentesting and bug bounty
python security encryption cybersecurity penetration-testing bug-bounty infosec application-security pentesting bugbounty burp-plugin burpsuite burp-extensions burpsuite-extender
-
Updated
Apr 12, 2025 - Python
A Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).
security-audit blacklist bitcoin hacking cryptocurrency penetration-testing web-security bugbounty hacking-tool security-scanner burp-plugin burpsuite security-tools burp-extensions blacklist-extension burpsuitepro coinhive cryptojacking coinhive-miners web-application-hacking
-
Updated
Mar 23, 2022 - Python
Exporter is a Burp Suite extension to copy a request to a file or the clipboard as multiple programming languages functions.
-
Updated
Oct 12, 2021 - Python
SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibility of manual testing with many powerful evasion techniques.
sqli bug-bounty pentesting bugbounty evasion bughunting burp-plugin burpsuite payload-generator sqlinjection burp-extensions burpsuite-pro pentesting-tools
-
Updated
Aug 21, 2020 - Python
jsonp is a Burp Extension which attempts to reveal JSONP functionality behind JSON endpoints.
-
Updated
Feb 15, 2021 - Python
A BurpSuite extension to create a custom word-list of endpoint and parameters for enumeration and fuzzing
-
Updated
Jun 27, 2023 - Python
Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the integration of webhooks, this tool sends real-time updates whenever a new issue is identified, directly to your preferred endpoint. No more waiting for final reports – you get instant, actionable insights! 🛠️
-
Updated
Dec 7, 2024 - Python
A Burp Suite Extension for pentester and bug bounty hunters an to maintain checklist, map flows, write test cases and track vulnerabilities
infosec pentesting bugbounty burp appsec burp-plugin burpsuite burp-extensions burpsuite-extender burpsuite-tools
-
Updated
Aug 2, 2023 - Python
BurpSuite extension to inject custom cross-site scripting payloads on every form/request submitted to detect blind XSS vulnerabilities
-
Updated
Jun 4, 2023 - Python
Burp Extension that copies a request and builds a FFUF skeleton
-
Updated
Sep 29, 2023 - Python
SQL injection script for MSSQL that extracts domain users from an Active Directory environment based on RID bruteforcing
windows active-directory penetration-testing sql-injection mssql application-security burp-plugin burp-extensions user-enumeration
-
Updated
May 10, 2020 - Python
A Burp Suite plugin/extension that offers a shell in Burp. Both useful for OS Command injection and LFI exploration
security penetration-testing pentesting burp-plugin burpsuite security-tools burp-extensions burpsuite-extender penetration-testing-tools
-
Updated
Sep 11, 2020 - Python
Official TruffleHog Burp Suite Extension. Scan Burp Suite traffic for 800+ different types of secrets (API keys, passwords, SSH keys, etc) using TruffleHog.
-
Updated
Mar 12, 2025 - Python
Improve this page
Add a description, image, and links to the burp-extensions topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the burp-extensions topic, visit your repo's landing page and select "manage topics."