burp-JS-Miner
Static file scanner
Automates discovery of secrets and vulnerabilities in static web files
This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.
54 stars
1 watching
19 forks
Language: Java
last commit: over 1 year ago Related projects:
| Repository | Description | Stars |
|---|---|---|
 h3xstream/burp-retire-js | A tool that integrates with Burp and ZAP to identify vulnerable JavaScript libraries | 200 |
 secdec/attack-surface-detector-burp | Identifies web app endpoints and parameters to help detect vulnerabilities | 98 |
 vulnerscom/burp-vulners-scanner | A tool that searches for vulnerabilities in web applications using an external API | 834 |
 moeinfatehi/backup-finder | An extension for Burp Suite designed to scan webservers for sensitive backup files | 160 |
 pmiaowu/burpshiropassivescan | An extension for Burp Suite that automates passive detection of Shiro framework vulnerabilities. | 1,687 |
 silentsignal/burp-json-array | A plugin for Burp Suite's JSON processing, identifying potential security issues in JSON arrays. | 4 |
 burp-hash/burp-hash | Automates the process of identifying potential parameter values in hashed tokens by comparing hashes to observed data in an application. | 32 |
 static-flow/burpsuitesharerequests | Enables the sharing of specific Burp Suite requests among users. | 12 |
 phefley/burp-javascript-security-extension | A tool that scans web pages for security vulnerabilities in JavaScript resources | 22 |
 burp-brewski/brewski | A Java extension for Burp Suite allowing custom scanner checks in JavaScript. | 21 |
 contrast-security-oss/burptrast | Automates vulnerability assessment and endpoint discovery for web applications using Contrast Security's Teamserver API. | 16 |
 projectdiscovery/nuclei-burp-plugin | A plugin for Burp Suite that enables automated template generation and execution of security testing tools. | 1,192 |
 mystech7/burp-hunter | A plugin for Burp Suite that helps with blind XSS testing by performing injection replacements and correlating requests with an XSS Hunter domain | 148 |
 directdefense/superserial | A Burp Suite Extender to identify Java Deserialization vulnerabilities in client requests and server responses. | 9 |
 cys4srl/sensitivediscoverer | An extension for Burp Suite to automatically search for sensitive strings in HTTP messages | 42 |