This Burp Suite extension automatically detects and exploits HTTP Request Smuggling vulnerabilities using advanced desynchronization techniques developed by PortSwigger researcher James Kettle. It supports comprehensive scanning for HTTP/1.1 and HTTP/2-downgrade desync vulnerabilities,…
A Burp Suite Pro extension which augments your proxy traffic by injecting non-invasive headers designed to reveal backend systems by causing pingbacks to Burp Collaborator
HUNT Suite is a collection of Burp Suite Pro/Free and OWASP ZAP extensions. Identifies common parameters vulnerable to certain vulnerability classes (Burp Suite Pro and OWASP ZAP). Organize testing methodologies (Burp Suite Pro and Free).
Burp Suite plugin identifies insertion points for GWT (Google Web Toolkit) requests
The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
The main features of secdec/attack-surface-detector-burp are: Burp Suite Extensions, Vulnerability Scanners, Proxy Tool Extensions.
Open-source alternatives to secdec/attack-surface-detector-burp include: portswigger/http-request-smuggler — This Burp Suite extension automatically detects and exploits HTTP Request Smuggling vulnerabilities using advanced… portswigger/collaborator-everywhere — A Burp Suite Pro extension which augments your proxy traffic by injecting non-invasive headers designed to reveal… cnotin/burp-scan-manual-insertion-point — Burp Suite Pro extension. bit4woo/knife — A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅. bytebutcher/burp-send-to — Adds a customizable "Send to..."-context-menu to your BurpSuite. augustd/burp-suite-gwt-scan — Burp Suite plugin identifies insertion points for GWT (Google Web Toolkit) requests.