30 open-source projects similar to bugcrowd/hunt, ranked by how many features they have in common. Compare stars, activity and what each one does to find the best HUNT alternative.
Blackbox Protobuf now has an official package on PyPi under the name bbpb. The blackboxprotobuf package is an older fork
A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅
Burp Extension to find potential endpoints, parameters, and generate a custom target wordlist
This Burp Suite extension automatically detects and exploits HTTP Request Smuggling vulnerabilities using advanced desynchronization techniques developed by PortSwigger researcher James Kettle. It supports comprehensive scanning for HTTP/1.1 and HTTP/2-downgrade desync vulnerabilities,…
Adds a customizable "Send to..."-context-menu to your BurpSuite.
Dr. Watson is a simple Burp Suite extension that helps find assets, keys, subdomains, IP addresses, and other useful information! It's your very own discovery side kick, the Dr. Watson to your Sherlock!
A Burp Suite Pro extension which augments your proxy traffic by injecting non-invasive headers designed to reveal backend systems by causing pingbacks to Burp Collaborator
The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
This extension copies the selected request(s) to the clipboard as PowerShell object assignments. Standard or Base64 formats are available, with Base64 being the best option for binary data such as file uploads. Copied data also includes the necessary command to invoke the web request(s).
This Burp Suite extension turns Burp into a Google Authenticator client. The current Google Two-Factor Authentication (2FA) code is automatically computed from a given shared secret and applied to bespoke location(s) in relevant requests in real-time.
Parse OpenAPI documents into Burp Suite for automating OpenAPI-based APIs security assessments (approved by PortSwigger for inclusion in their official BApp Store).
This tool detects XML Fast Infoset encoded HTTP requests in Burp based on the Content-Type header (xml/fastinfoset). Once the encoding is detected, it un-gzips the requests and decodes it to present a text-based readable user-friendly version. After a request has been edited, the plugin converts…
Utilities for creating Burp Suite Extensions, including the Burp Extensions API interfaces.
This is a Burp Suite Pro extension that is able to find the “Reverse Tabnabbing” attack. For more information about “Reverse Tabnabbing” attack please see https://www.owasp.org/index.php/Reverse_Tabnabbing
BurpSuite extension to assist with Automated Forced Browsing/Endpoint Enumeration
A simple burp plugin that highlights the Proxy history to differentiate requests made by different browsers. The way this works is that each browser would be assigned one color and the highlights happen automatically.
BurpelFish - Adds Google Translate to Burp's Context Menu. "Babel Fish" language translation for app-sec testing in other languages.
Burp extension to detect alias traversal via NGINX misconfiguration at scale.
Burp Suite extension for parsing Swagger web service definition files
A burp extender that recalculate signature value automatically after you modified request parameter value.