awesome-burp-extensions
Security testing tools
A curated collection of plugins for a web application security testing tool.
A curated list of amazingly awesome Burp Extensions
3k stars
122 watching
592 forks
last commit: 5 days ago Content | |||
| Active Scan++ | 585 | about 2 years ago | ActiveScan++ extends Burp Suite's active and passive scanning capabilities |
| Burp Vulners Scanner | 834 | 7 months ago | Vulnerability scanner based on vulners.com search API |
| Additional Scanner checks | 27 | over 4 years ago | Collection of scanner checks missing in Burp |
| CSRF Scanner | 19 | over 6 years ago | CSRF Scanner Extension for Burp Suite Pro |
| HTML5 Auditor | 4 | 12 months ago | This extension checks for usage of HTML5 features that have potential security risks |
| Software Version Reporter | 30 | 6 months ago | Burp extension to passively scan for applications revealing software version numbers |
| J2EEScan | 646 | about 1 year ago | J2EEScan is a plugin for Burp Suite Proxy. The goal of this plugin is to improve the test coverage during web application penetration tests on J2EE applications |
| Java Deserialization Scanner | 775 | about 3 years ago | All-in-one plugin for Burp Suite for the detection and the exploitation of Java deserialization vulnerabilities |
| CSP Bypass | 163 | over 1 year ago | A Burp Plugin for Detecting Weaknesses in Content Security Policies |
| Burp Sentinel | 147 | over 7 years ago | GUI Burp Plugin to ease discovering of security holes in web applications |
| Backslash Powered Scanner | 637 | about 1 year ago | Finds unknown classes of injection vulnerabilities |
| Collaborator Everywhere | 425 | 12 months ago | A Burp Suite Pro extension which augments your proxy traffic by injecting non-invasive headers designed to reveal backend systems by causing pingbacks to Burp Collaborator |
| Burp Molly Pack | 138 | almost 7 years ago | Security checks pack for Burp Suite |
| Noopener Burp Extension | 4 | over 6 years ago | Find Target=_blank values within web pages that are set without noopener and noreferrer attributes |
| ActiveScan3Plus | 31 | almost 8 years ago | Modified version of ActiveScan++ Burp Suite extension |
| Burp Image Size | 93 | over 6 years ago | Image size issues plugin for Burp Suite |
| UUID issues for Burp Suite | 51 | over 2 years ago | UUID issues for Burp Suite |
| JSON array issues for Burp Suite | 4 | almost 8 years ago | JSON Array issues plugin for Burp Suite |
| Burp Retire JS | 200 | 5 months ago | Burp/ZAP/Maven extension that integrate Retire.js repository to find vulnerable Javascript libraries |
| SOMEtime | 60 | over 7 years ago | A BurpSuite plugin to detect Same Origin Method Execution vulnerabilities |
| HTTPoxy Scanner | 88 | about 3 years ago | A Burp Suite extension that checks for the HTTPoxy vulnerability |
| ParrotNG | 47 | over 9 years ago | ParrotNG is a tool capable of identifying Adobe Flex applications (SWF) vulnerable to CVE-2011-2461 |
| Error Message Checks | 64 | 11 months ago | Burp Suite extension to passively scan for applications revealing server error messages |
| Identity Crisis | 15 | about 10 years ago | A Burp Suite extension that checks if a particular URL responds differently to various User-Agent headers |
| CSP Auditor | 136 | over 4 years ago | Burp and ZAP plugin to analyse Content-Security-Policy headers or generate template CSP configuration from crawling a Website/ |
| Burp Suite GWT Scan | 13 | about 9 years ago | Burp Suite plugin identifies insertion points for GWT (Google Web Toolkit) requests |
| Minesweeper | 197 | over 2 years ago | A Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 14000+ malicious cryptocurrency mining domains (cryptojacking) |
| Yara | This extension allows you to perform on-demand Yara scans of websites within the Burp interface based on custom Yara rules that you write or obtain | ||
| WordPress Scanner | Find known vulnerabilities in WordPress plugins and themes using WPScan database | ||
| Web Cache Deception Burp Extension | This extension tests applications for the Web Cache Deception vulnerability | ||
| UUID Detector | This extension passively reports UUID/GUIDs observed within HTTP requests | ||
| Software Vulnerability Scanner | This extension scans for vulnerabilities in detected software versions using the Vulners.com API | ||
| Reverse Proxy Detector | This extension detects reverse proxy servers | ||
| SRI Check | 13 | over 5 years ago | A Burp Suite extension for identifying missing Subresource Integrity attributes |
| Reflected File Download Checker | This extension checks for reflected file downloads | ||
| Length Extension Attacks | his extension lets you perform hash length extension attacks on weak signature mechanisms | ||
| Headers Analyzer | This extension adds a passive scan check to report security issues in HTTP headers | ||
| HeartBleed | This extension adds a new tab to Burp's Suite main UI allowing a server to be tested for the Heartbleed bug. If the server is vulnerable, data retrieved from the server's memory will be dumped and viewed | ||
| Image Size Issues | This extension passively detects potential denial of service attacks due to the size of an image being specified in request parameters | ||
| CMS Scanner | An active scan extension for Burp that provides supplemental coverage when testing popular content management systems | ||
| Detect Dynamic JS | This extension compares JavaScript files with each other to detect dynamically generated content and content that is only accessible when the user is authenticated | ||
| CTFHelper | 30 | almost 7 years ago | This extension will scan some sensitive files (backup files likes .index.php.swp or .git directory) in web server that makes solving CTF challenge faster |
| Broken Link Hijacking | 55 | about 5 years ago | This extension discovers the broken links passively could be handy in second order takeovers |
| Discover Reverse Tabnabbing | 5 | almost 5 years ago | Identify areas in your application that are vulnerable to Reverse Tabnabbing |
| Scan manual insertion point | 10 | over 7 years ago | This Burp extension lets the user select a region of a request (typically a parameter value), and via the context menu do an active scan of just the insertion point defined by that selection |
| AdminPanelFinder | 118 | over 2 years ago | A burp suite extension that enumerates infrastructure and application Admin Interfaces (OWASP OTG-CONFIG-005) |
| HTTP Request Smuggler | 958 | 11 months ago | This is an extension for Burp Suite designed to help you launch HTTP Request Smuggling attacks, originally created during HTTP Desync Attacks research. It supports scanning for Request Smuggling vulnerabilities, and also aids exploitation by handling cumbersome offset-tweaking for you |
| iRule Detector | 5 | over 5 years ago | Detect a Remote Code or Command Execution (RCE) vulnerability in some implementations of F5 Networks’ popular BigIP load balancer |
| Burp AEM Security Scanner Extension | 74 | 8 months ago | Burp AEM Security Scanner is an AEM focussed plugin which supports the evaluation of well known misconfigurations of AEM installations |
| FlareQuench | 61 | almost 2 years ago | Burp Suite plugin that adds additional checks to the passive scanner to reveal the origin IP(s) of Cloudflare-protected web applications |
| Cypher Injection Scanner | 5 | about 4 years ago | A Burp Suite Extension that detects Cypher code injection |
| InQL Scanner | 1,540 | 5 months ago | A Comprehensive Burp Extension for GraphQL Security Testing |
| Attack Surface Detector | 98 | 11 months ago | The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters |
| Endpoint Finder | 51 | 6 months ago | A tool to extract endpoint used by a JavaScript file through static code analysis. This is intended to help people that do blackbox review of web application to more easily identify all the endpoint available |
| ESLinter | 49 | over 3 years ago | ESLinter is a Burp extension that extracts JavaScript from responses and lints them with ESLint while you do your manual testing |
| 403Bypasser | 1,567 | over 1 year ago | An burpsuite extension to bypass 403 restricted directory |
| BurpShiroPassiveScan | 1,687 | almost 2 years ago | A passive shiro detection plug-in based on BurpSuite |
| Log4j2Scan | 773 | over 1 year ago | Log4j2 Remote Code Execution Vulnerability, Passive Scan Plugin for BurpSuite |
| Log4J Scanner | 101 | almost 3 years ago | Burp extension to scan Log4Shell (CVE-2021-44228) vulnerability pre and post auth |
| Log4Shell scanner for Burp Suite | 481 | about 1 year ago | If you'd like to scan only for Log4j (and not other things such as XSS or SQLi), this plugin makes it possible |
| Burp JS Miner | 54 | over 1 year ago | This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files |
| Trishul | 234 | over 4 years ago | Burp Extension written in Jython to hunt for common vulnerabilities found in websites |
| RouteVulScan | 1,152 | 5 months ago | Route Vulnerable scanning |
| Agartha | 355 | about 1 month ago | Agartha is a penetration testing tool which creates dynamic payload lists and user access matrix to reveal injection flaws and authentication/authorization issues |
| RouteVulScan | 1,152 | 5 months ago | RouteVulScan is a burp plug-in developed using Java that can recursively detect vulnerable paths |
| Burp DOM Scanner | 99 | over 1 year ago | It's a Burp Suite's extension to allow for recursive crawling and scanning of Single Page Applications |
| JSpector | 341 | over 1 year ago | JSpector is a Burp Suite extension that passively crawls JavaScript files and automatically creates issues with URLs, endpoints and dangerous methods found on the JS files |
| Server-Side Prototype Pollution Scanner | 7 | over 1 year ago | This extension identifies server side prototype pollution vulnerabilities, and requires Burp Suite v2021.9 or later |
| Host Header Inchecktion | 6 | about 1 month ago | This burp extension helps to find host header injection vulnerabilities by actively testing a set of injection types. A scan issue is created if an injection was successful |
| DNS Analyzer | 94 | about 1 year ago | A Burp Suite extension for discovering DNS vulnerabilities in web applications! |
| PasskeyScanner | 1 | about 1 year ago | This is a BurpSuite plugin that recognizes and scans Passkey (webauthn) protocols and detects security issues |
| blinks | 104 | 12 days ago | Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the integration of webhooks, this tool sends real-time updates whenever a new issue is identified, directly to your preferred endpoint |
Content / Custom Features | |||
| Burp Bounty - Scan Check Builder | 1,680 | 7 months ago | This BurpSuite extension allows you, in a quick and simple way, to improve the active and passive burpsuite scanner by means of personalized rules through a very intuitive graphical interface |
| Scan Manual Insertion Point | This Burp extension lets the user select a region of a request (typically a parameter value), and via the context menu do an active scan of just the insertion point defined by that selection | ||
| Distribute Damage | Designed to make Burp evenly distribute load across multiple scanner targets, this extension introduces a per-host throttle and a context menu to trigger scans from | ||
| Add & Track Custom Issues | 4 | over 5 years ago | This extension allows custom scan issues to be added and tracked within Burp |
| Decoder Pro | 2 | over 6 years ago | Burp Suite Plugin to decode and clean up garbage response text |
| Decoder Improved | Decoder Improved is a data transformation plugin for Burp Suite that better serves the varying and expanding needs of information security professionals | ||
| Request Highlighter | 3 | over 6 years ago | Request Highlighter is a simple extension for Burp Suite tool (for both community and professional editions) that provides an automatic way to highlight HTTP requests based on headers content (eg. Host, User-Agent, Cookies, Auth token, custom headers etc.) |
| Request Minimizer | This extension performs HTTP request minimization. It deletes parameters that are not relevant such as: random ad cookies, cachebusting nonces, etc | ||
| Wildcard | 128 | almost 4 years ago | There is number of great Burp extension out there. Most of them create their own tabs |
| Hackvertor | 170 | 21 days ago | Hackvertor is a tag-based conversion tool that supports various escapes and encodings including HTML5 entities, hex, octal, unicode, url encoding etc |
| Multi-Browser Highlighting | This extension highlights the Proxy history to differentiate requests made by different browsers. The way this works is that each browser would be assigned one color and the highlights happen automatically | ||
| Manual Scan Issues | This extension allows users to manually create custom issues within the Burp Scanner results | ||
| Handy Collaborator | Handy Collaborator is a Burp Suite Extension that lets you use the Collaborator tool during manual testing in a comfortable way | ||
| BadIntent | 322 | over 7 years ago | Intercept, modify, repeat and attack Android's Binder transactions using Burp Suite |
| Custom Send To | 8 | almost 3 years ago | Adds a customizable "Send to..."-context-menu to your BurpSuite |
| IP Rotate | 815 | 6 months ago | Extension for Burp Suite which uses AWS API Gateway to rotate your IP on every request |
| Timeinator | 21 | over 1 year ago | Timeinator is an extension for Burp Suite that can be used to perform timing attacks over an unreliable network such as the internet |
| Auto-Drop Requests | 8 | over 1 year ago | Burp extension to automatically drop requests that match a certain regex |
| Scope Monitor | 195 | over 3 years ago | A Burp Suite Extension to monitor and keep track of tested endpoints |
| Taborator | 23 | almost 2 years ago | Improved Collaborator client in its own tab |
| pip3line | 3 | over 5 years ago | Raw bytes manipulation utility, able to apply well known and less well known transformations |
| Auto Drop | 8 | over 1 year ago | This extension allows you to automatically Drop requests that match a certain regex. Helpful in case the target has logging or tracking services enabled |
| Bookmarks | 66 | over 3 years ago | A Burp Suite extension to bookmark requests for later, instead of those 100 unnamed repeater tabs you've got open |
| Stepper | 194 | 10 months ago | A Multi-Stage Repeater Replacement For Burp Suite |
| Response Pattern Matcher | 15 | over 1 year ago | Adds extensibility to Burp by using a list of payloads to pattern match on HTTP responses highlighting interesting and potentially vulnerable areas |
| Add & Track Custom Issues | 4 | over 5 years ago | This extension allows custom scan issues to be added and tracked within Burp |
| cstc | 219 | 7 days ago | CSTC is a Burp Suite extension that allows request/response modification using a GUI analogous to CyberChef |
| Piper for Burp Suite | 115 | 9 months ago | Piper Burp Suite Extender plugin |
| Response Grepper | 3 | over 3 years ago | This Burp extension will auto-extract and display values from HTTP Response bodies based on a Regular Expression |
| Attack Surface Detector | 98 | 11 months ago | The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters |
| Timeinator | 21 | over 1 year ago | Timeinator is an extension for Burp Suite that can be used to perform timing attacks over an unreliable network such as the internet |
| Copy Request & Response | 26 | about 2 months ago | The Copy Request & Response Burp Suite extension adds new context menu entries that can be used to simply copy the request and response from the selected message to the clipboard |
| HaE - Highlighter and Extractor | 3,167 | 6 days ago | HaE is used to highlight HTTP requests and extract information from HTTP response messages |
| Burp-IndicatorsOfVulnerability | 41 | almost 2 years ago | Burp extension that checks application requests and responses for indicators of vulnerability or targets for attack |
| BurpSuiteSharpener | 516 | over 1 year ago | This extension should add a number of UI and functional features to Burp Suite to make working with it easier |
| Burp-Send-To-Extension | 150 | almost 2 years ago | Adds a customizable "Send to..."-context-menu to your BurpSuite |
| PwnFox | 1,060 | 4 months ago | PwnFox is a Firefox/Burp extension that provide usefull tools for your security audit |
| Reshaper for Burp | 92 | 12 days ago | Extension for Burp Suite to trigger actions and reshape HTTP request and response traffic using configurable rules |
| RepeaterClips | 4 | almost 4 years ago | The RepeaterClips extension lets you share requests with just two clicks and a paste |
| Burp Customizer | 551 | about 2 years ago | Because just a dark theme wasn't enough |
| Copy Regex Matches | 33 | almost 3 years ago | Copy Regex Matches is a Burp Suite plugin to copy regex matches from selected requests and/or responses to the clipboard |
| match-replace-burp | 338 | about 1 year ago | Useful Match and Replace BurpSuite Rules |
| Backup Finder | 160 | 8 months ago | A burp suite extension that reviews backup, old, temporary, and unreferenced files on the webserver for sensitive information |
| Diff Last Response | 0 | over 2 years ago | Diff last response will show the difference between the previous and current response |
| WebAuthn CBOR Decoder | 1 | over 2 years ago | WebAuthn CBOR is a Burp Extension to decode WebAuthn CBOR format. WebAuthn is a W3C Standard to support strong authentication of users |
| GAP-Burp-Extension | 1,253 | 4 months ago | This is an evolution of the original getAllParams extension for Burp. Not only does it find more potential parameters for you to investigate, but it also finds potential links to try these parameters on, and produces a target specific wordlist to use for fuzzing |
| SocketSleuth | 83 | 5 months ago | SocketSleuth aims to enhance Burp Suite's websocket testing capabilities and make testing websocket based applications easier |
| WebSocket Turbo Intruder | 13 | 3 months ago | Extension to fuzz WebSocket messages using custom code |
| HAR Importer | 2 | over 1 year ago | A HAR importer |
| Conditional Match and Replace (CMAR) | 2 | over 1 year ago | An extension allowing you to create match and replace operations that execute only when a condition is matched (or not matched). The condition can be matched against the request Header/Body/All, or the response Header/Body/All. If the condition is matched, you can apply a match and replace rule against the specified area. You can create a condition that matches a request, then performs a match and replace in the response |
| BlazorTrafficProcessor (BTP) | 24 | about 1 year ago | A BurpSuite extension to aid pentesting web applications that use Blazor Server/BlazorPack. Primary functionality includes converting BlazorPack messages to JSON and vice versa, introduces tamperability for BlazorPack serialized messages |
| MagicByteSelector | 21 | about 1 year ago | Burp Suite Extension for inserting a magic byte into responder's request |
| CookieMonster | 1 | 8 months ago | A Burp Suite plugin to easily manage cookies |
| SocketSleuth | 83 | 5 months ago | Burp Extension to add additional functionality for pentesting websocket based applications |
| DNS-Exfilnspector | 8 | 10 months ago | Automagically decode DNS Exfiltration queries to convert Blind RCE into proper RCE via Burp Collaborator |
| BatchRepeater | 2 | 3 months ago | BatchRepeater is a BurpSuite extension that enhances the functionality of the Repeater tool by allowing users to send multiple selected HTTP requests to the Repeater in a single action |
Content / Beautifiers and Decoders | |||
| .NET Beautifier | 12 | over 9 years ago | A BurpSuite extension for beautifying .NET message parameters and hiding some of the extra clutter that comes with .NET web apps (i.e. __VIEWSTATE) |
| JS Beautifier | 94 | over 10 years ago | Burp Suite JS Beautifier |
| Burp ASN1 Toolbox | 2 | almost 7 years ago | ASN.1 toolbox for Burp Suite |
| JSON JTree viewer for Burp Suite | 40 | about 3 years ago | JSON JTree viewer for Burp Suite |
| JSON Beautifier | 37 | about 5 years ago | JSON Beautifier for Burp written in Java |
| Browser Repeater | 7 | over 10 years ago | BurpSuite extension for Repeater tool that renders responses in a real browser |
| GQL Parser | 58 | about 6 years ago | A repository for GraphQL Extension for Burp Suite |
| XChromeLogger Decoder | his extension adds a new tab in the HTTP message editor to display X-ChromeLogger-Data in decoded form | ||
| WebSphere Portlet State Decoder | This extension displays the decoded XML state of a WebSphere Portlet in a new tab when the request is viewed | ||
| PDF Viewer | This extension adds a tab to the HTTP message viewer to render PDF files in responses | ||
| NTLM Challenge Decoder | This extension decodes NTLM SSP headers | ||
| JCryption Handler | This extension provides a way to perform manual and/or automatic Security Assessment for Web Applications that using JCryption JavaScript library to encrypt data sent through HTTP methods (GET and POST) | ||
| JSWS Parser | This extension can be used to parse a response containing a JavaScript Web Service Proxy (JSWS) and generate JSON requests for all supported methods | ||
| JSON Decoder | This extension adds a new tab to Burp's HTTP message editor, and displays JSON messages in decoded form | ||
| MessagePack | This extension supports: decoding MessagePack requests and responses to JSON format, converting requests from JSON format to MessagePack | ||
| Fast Infoset Tester | This extension converts incoming Fast Infoset requests and responses to XML, and converts outgoing messages back to Fast Infoset | ||
| burp-protobuf-decoder | 104 | over 10 years ago | A simple Google Protobuf Decoder for Burp |
| BurpAMFDSer | 149 | about 3 years ago | BurpAMFDSer is a Burp plugin that will deserialze/serialize AMF request and response to and from XML with the use of Xtream library |
| Deflate Burp Plugin | 13 | over 13 years ago | The Deflate Burp Plugin is a plug-in for Burp Proxy (it implements the IBurpExtender interface) that decompresses HTTP response content in the ZLIB (RFC1950) and DEFLATE (RFC1951) compression formats |
| Burp Suite GWT wrapper | 3 | over 11 years ago | Burp Suite GWT wrapper |
| GraphQL Beautifier | 30 | almost 7 years ago | Burp Suite extension to help make Graphql request more readable |
| Decoder Improved | 135 | about 3 years ago | Improved decoder for Burp Suite |
| Cyber Security Transformation Chef | 219 | 7 days ago | The Cyber Security Transformation Chef (CSTC) is a Burp Suite extension. It is build for security experts to extend Burp Suite for chaining simple operations for each incomming or outgoing message |
| GraphQL Raider | 21 | about 2 years ago | GraphQL Raider is a Burp Suite Extension for testing endpoints implementing GraphQL |
| JSONPath | 29 | 6 months ago | Burp Suite extension to view and extract data from JSON responses |
| Burp Beautifier | 1 | over 3 years ago | BurpBeautifier is a Burpsuite extension for beautifying request/response body, supporting JS, JSON, HTML, XML format, writing in Jython 2.7 |
| JSON/JS Beautifier | 14 | about 5 years ago | This is a Burp Extension for beautifying JSON and JavaScript output to make the body parameters more human readable |
| burp-suite-jsonpath | 29 | 6 months ago | Burp Suite extension to view and extract data from JSON responses |
| Burp-Timestamp-Editor | 3 | over 3 years ago | Provides a GUI to view and edit Unix timestamps in Burp message editors |
| ViewState Editor | 11 | over 3 years ago | This extension allows Burp users to view & edit the contents of ViewState |
Content / Cloud Security | |||
| AWS Security Checks | 36 | almost 7 years ago | This extensions provides additional Scanner checks for AWS security issues |
| AWS Extender | 241 | over 2 years ago | AWS Extender (Cloud Storage Tester) is a Burp plugin to assess permissions of cloud storage containers on AWS, Google Cloud and Azure |
| AWS Signer | 86 | about 2 months ago | Burp Extension for AWS Signing |
| cloud_enum | 1,685 | about 1 month ago | Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud. Must be run from a *nix environment |
| AWS SigV4 | 21 | 2 months ago | This is a Burp extension for signing AWS requests with SigV4 |
| Burp-AnonymousCloud | 41 | almost 2 years ago | Burp extension that performs a passive scan to identify cloud buckets and then test them for publicly accessible vulnerabilities |
| AWS Cognito | 7 | 12 months ago | This extension helps identify key information from requests to AWS Cognito, provides several passive scan checks, and suggests HTTP request templates for exploiting several known vulnerabilities |
Content / Scripting | |||
| Python Scripter | 52 | over 2 years ago | This extension allows execution of a custom Python script on each HTTP request and response processed by Burp |
| Burpkit | 456 | almost 9 years ago | BurpKit is a BurpSuite plugin which helps in assessing complex web apps that render the contents of their pages dynamically |
| Burp Requests | 127 | 3 months ago | Copy as requests plugin for Burp Suite |
| Burpy | 119 | over 6 years ago | Portable and flexible web application security assessment tool.It parses Burp Suite log and performs various tests depending on the module provided and finally generate a HTML report |
| Buby | 58 | over 9 years ago | A JRuby implementation of the BurpExtender interface for PortSwigger Burp Suite |
| Burpee | 36 | almost 5 years ago | Python object interface to requests/responses recorded by Burp Suite |
| Burp Jython Tab | 4 | almost 9 years ago | Description not available |
| Reissue Request Scripter | This extension generates scripts to reissue a selected request | ||
| Burp Buddy | 156 | almost 6 years ago | burpbuddy exposes Burp Suites's extender API over the network through various mediums, with the goal of enabling development in any language without the restrictions of the JVM |
| Copy As Python-Requests | 61 | about 2 months ago | This extension copies selected request(s) as Python-Requests invocations |
| Copy as PowerShell Requests | This extension copies the selected request(s) as PowerShell invocation(s) | ||
| Copy as Node Request | This extension copies the selected request(s) as Node.JS Request invocations | ||
| Copy as JavaScript Request | 5 | over 5 years ago | This Burp Extension copies the selected request to the clipboard as JavaScript Fetch API |
| BReWSki | 21 | almost 10 years ago | BReWSki (Burp Rhino Web Scanner) is a Java extension for Burp Suite that allows user to write custom scanner checks in JavaScript |
| JScriptor | 18 | 10 months ago | Pre-Script and Post-Script like Postman extension for Burpsuite |
| BcryptMontoya | 22 | 2 months ago | BcryptMontoya is a powerful plugin for Burp Suite that allows you to effortlessly modify HTTP requests and responses passing through the Burp Suite proxy using Jython code or gRPC, especially when dealing with encrypted requests |
| Kollaborator Module Builder | 0 | about 1 year ago | Burp suite extension to build and handle collaborator interaction |
Content / OAuth and SSO | |||
| SAML Raider | 406 | 10 days ago | SAML Raider is a Burp Suite extension for testing SAML infrastructures. It contains two core functionalities: Manipulating SAML Messages and manage X.509 certificates |
| Burp OAuth | 42 | over 6 years ago | OAuth plugin for Burp Suite Extender |
| EsPReSSO | 117 | over 3 years ago | An extension for BurpSuite that highlights SSO messages in Burp's proxy window |
| SAML Encoder/Decoder | This extension adds a new tab to Burp's main UI, allowing encoding and decoding of SAML (Security Assertion Markup Language) formatted messages | ||
| SAML Editor | This extension adds a new tab to Burp's HTTP message editor, allowing encoding and decoding of SAML (Security Assertion Markup Language) formatted messages | ||
| PeopleSoft Token Extractor | This extension help test PeopleSoft SSO tokens | ||
| JSON Web Token Attacker | This extension helps to test applications that use JavaScript Object Signing and Encryption, including JSON Web Tokens | ||
| JSON Web Tokens | This extension lets you decode and manipulate JSON web tokens on the fly, check their validity and automate common attacks against them | ||
| AuthHeader Updater | 10 | about 6 years ago | Burp extension to specify the token value for the Authenication header while scanning |
| Dupe Key Injector | 134 | over 2 years ago | Dupe Key Injetctor is a Burp Suite extension implementing Dupe Key Confusion, a new XML signature bypass technique presented at BSides/BlackHat/DEFCON 2019 "SSO Wars: The Token Menace" presentation |
| SAMLReQuest | 29 | over 8 years ago | Enables you to view, decode, and modify SAML requests and responses |
| OAUTHScan | 169 | 27 days ago | OAUTHScan is a Burp Suite Extension written in Java with the aim to provide some automatic security checks, which could be useful during penetration testing on applications implementing OAUTHv2 and OpenID standards |
| JWT Re-auth | 100 | almost 2 years ago | Burp plugin to cache authentication tokens from an "auth" URL, and then add them as headers on all requests going to a certain scope |
| OAuthv1 - Signing | 2 | almost 2 years ago | The purpose of this extension is to provide an additional authentication method that is not natively supported by Burp Suite. Currently, this tool only supports OAuth v1 |
| JWT Editor | 11 | about 1 month ago | A Burp Suite extension for creating and editing JSON Web Tokens |
| SignSaboteur | 140 | about 1 month ago | SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens |
Content / Information Gathering | |||
| Google Hack | This extension provides a GUI interface for setting up and running Google Hacking queries, and lets you add results directly to Burp's site map | ||
| PwnBack/Wayback Machine | 225 | over 6 years ago | Burp Extender plugin that generates a sitemap of a website using Wayback Machine |
| Directory File Listing Parser Importer | 4 | over 11 years ago | This is a Burp Suite extension in Python to parse a directory and file listing text file of a web application |
| Site Map Extractor | This extension extracts information from the Site Map. You can use the full site map or just in-scope items | ||
| Site Map Fetcher | This extension fetches the responses of unrequested items in the site map | ||
| Burp CSJ | 33 | almost 10 years ago | This extension integrates Crawljax, Selenium and JUnit together. The intent of this extension is to aid web application security testing, increase web application crawling capability and speed-up complex test-cases execution |
| Attack Surface Detector | The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters | ||
| domain_hunter | 666 | over 1 year ago | A Burp Suite extender that try to find sub-domains,similar domains and related domains of an organization, not only domain |
| BigIP Discover | 15 | 6 months ago | A extension of Burp suite. The cookie set by the BipIP server may include a private IP, which is an extension to detect that IP |
| AdminPanelFinder | 118 | over 2 years ago | A burp suite extension that enumerates infrastructure and application Admin Interfaces (OWASP OTG-CONFIG-005) |
| Asset Discover | 219 | over 3 years ago | Burp Suite extension to discover assets from HTTP response using passive scanning |
| DirectoryImporter | 36 | over 1 year ago | This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later |
| Dr. Watson | 214 | about 5 years ago | Dr. Watson is a simple Burp Suite extension that helps find assets, keys, subdomains, IP addresses, and other useful information |
| Filter OPTIONS Method | 7 | about 2 years ago | A Burp extension that filters out OPTIONS requests from populating Burp's Proxy history |
| Subdomain Extractor | 44 | almost 5 years ago | A very simple, straightforward extension to export sub domains from Burp using a context menu option |
| SAN Scanner | 3 | about 4 years ago | SAN Scanner is a Burp Suite extension for enumerating associated domains & services via the Subject Alt Names section of SSL certificates |
| Add to sitemap++ | 2 | about 2 years ago | Add to sitemap++ is a BURP extension that can read URLs from files or clipboard and add the discovered information on the site map of the selected host(s) |
| Look Over There | 0 | over 1 year ago | This is a Burp Suite extension to help Burp know where to look during scanning |
Content / Vulnerability Specific Extensions / Cross-site scripting | |||
| XSS Validator | 410 | over 2 years ago | This is a burp intruder extender that is designed for automation and validation of XSS vulnerabilities |
| burp-xss-sql-plugin | 44 | about 8 years ago | Publishing plugin which I used for years which helped me to find several bugbounty-worthy XSSes, OpenRedirects and SQLi |
| Burp Hunter | 148 | about 6 years ago | XSS Hunter Burp Plugin |
| DOM XSS Checks | This Burp Suite plugin passively scans for DOM-Based Cross-Site Scripting | ||
| Reflector | 1,133 | almost 4 years ago | Burp plugin able to find reflected XSS on page in real-time while browsing on site |
| BitBlinder | 107 | over 1 year ago | Burp extension helps in finding blind xss vulnerabilities |
| JavaScript Security | 22 | over 2 years ago | A Burp Suite extension which performs checks for cross-domain scripting against the DOM, subresource integrity checks, and evaluates JavaScript resources against threat intelligence data |
| Reflected Parameters | 19 | over 4 years ago | This extension monitors traffic and looks for request parameter values (longer than 3 characters) that are reflected in the response |
| jsonp | 149 | almost 4 years ago | jsonp is a Burp Extension which attempts to reveal JSONP functionality behind JSON endpoints. This could help reveal cross-site script inclusion vulnerabilities or aid in bypassing content security policies |
| feminda | 277 | about 5 years ago | An automated blind-xss search plugin for Burp Suite |
| XSS Cheatsheet | 3 | about 1 year ago | An extension to incorporate PortSwigger's Cross-site scripting cheat sheet in to Burp |
Content / Vulnerability Specific Extensions / Broken Access Control | |||
| Burplay/Multi Session Replay | 82 | about 7 years ago | Burplay is a Burp Extension allowing for replaying any number of requests using same modifications definition. Its main purpose is to aid in searching for Privilege Escalation issues |
| AuthMatrix | 614 | 9 months ago | AuthMatrix is a Burp Suite extension that provides a simple way to test authorization in web applications and web services |
| Autorize | 960 | 23 days ago | Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease application security people work and allow them perform an automatic authorization tests |
| AutoRepeater | 846 | almost 3 years ago | Automated HTTP Request Repeating With Burp Suite |
| UUID issues for Burp Suite | 51 | over 2 years ago | UUID issues for Burp Suite |
| Authz | 76 | over 11 years ago | Burp plugin to test for authorization flaws |
| Paramalyzer | 154 | about 2 years ago | Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests |
| Burp SessionAuth | 40 | over 2 years ago | Burp plugin which supports in finding privilege escalation vulnerabilities |
| Auto Repeater | This extension automatically repeats requests, with replacement rules and response diffing. It provides a general-purpose solution for streamlining authorization testing within web applications | ||
| IncrementMe Please | 11 | almost 4 years ago | Burp extension to increment a parameter in each active scan request |
| Auth Analyzer | 185 | 5 months ago | This Burp Extension helps you to find authorization bugs by repeating Proxy requests with self defined headers and tokens |
| AdminPanelFinder | 118 | over 2 years ago | A burp suite extension that enumerates infrastructure and application Admin Interfaces (OWASP OTG-CONFIG-005) |
Content / Vulnerability Specific Extensions / Cross-Site Request Forgery | |||
| CSRF Scanner | 19 | over 6 years ago | CSRF Scanner Extension for Burp Suite Pro |
| CSurfer | 18 | about 9 years ago | CSurfer is a CSRF guard hiding extension that keeps track of the latest guard value per session and update new requests accordingly |
| Additional CSRF Checks/EasyCSRF | 159 | almost 7 years ago | EasyCSRF helps to find weak CSRF-protection in WebApp which can be easily bypassed |
| Match/Replace Session Action | This extension provides match and replace functionality as a Session Handling Rule | ||
| Token Extractor | This extension allows tokens to be extracted from a response and replaced in requests | ||
| CSRF Token Tracker | This extension provides a sync function for CSRF token parameters | ||
| Token Rewrite | 16 | over 6 years ago | This extension lets you search for specific values like CSRF tokens in responses and use their values to modify parameters in future requests or set a cookie |
| burp-multistep-csrf-poc | 29 | about 5 years ago | Burp extension to generate multi-step CSRF POC |
| Anti-CSRF Token From Referer | 3 | over 4 years ago | The extension works by registering a new session handling rule called "Anti-CSRF token from referer" |
| burp-samesite-reporter | 6 | over 4 years ago | Burp extension that passively reports various SameSite flags |
Content / Vulnerability Specific Extensions / Deserialization | |||
| Java-Deserialization-Scanner | 775 | about 3 years ago | All-in-one plugin for Burp Suite for the detection and the exploitation of Java deserialization vulnerabilities |
| Java Serial Killer | 208 | 10 months ago | Burp extension to perform Java Deserialization Attacks |
| BurpJDSer-ng | 15 | over 10 years ago | Allows you to deserialize java objects to XML and lets you dynamically load classes/jars as needed |
| PHP Object Injection Check | This extension adds an active scan check to find PHP object injection vulnerabilities | ||
| Java Serialized Payloads | This extension generates various Java serialized payloads designed to execute OS commands | ||
| Freddy, Deserialization Bug Finder | Helps with detecting and exploiting serialization libraries/APIs | ||
| CustomDeserializer | This extension speeds up manual testing of web applications by performing custom deserialization | ||
| BurpJDSer | 149 | about 3 years ago | BurpJDSer is a Burp plugin that will deserialze/serialize Java request and response to and from XML with the use of Xtream library |
| PHP Object Injection Slinger | 42 | 3 months ago | Designed to help you find PHP Object Injection vulnerabilities on popular PHP Frameworks |
| GadgetProbe | 585 | over 3 years ago | This extension augments Intruder to probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths |
| fastjson-check | 369 | about 3 years ago | fastjson payload creator |
Content / Vulnerability Specific Extensions / Sensitive Data Exposure | |||
| Burp Smart Buster | 383 | about 4 years ago | A Burp Suite content discovery plugin that add the smart into the Buster! |
| PDF Metadata | 10 | almost 8 years ago | The PDF Metadata Burp Extension provides an additional passive Scanner check for metadata in PDF files |
| SpyDir | 22 | over 6 years ago | BurpSuite extension to assist with Automated Forced Browsing/Endpoint Enumeration |
| Burp Hash | 32 | over 9 years ago | Many applications will hash parameters such as ID numbers and email addresses for use in secure tokens, like session cookies |
| Param Miner | This extension identifies hidden, unlinked parameters. It's particularly useful for finding web cache poisoning vulnerabilities | ||
| MindMap Exporter | Aids with documentation of the following OWASP Testing Guide V4 tests: OTG-INFO-007: Map execution paths through application, OTG-INFO-006: Identify application entry points | ||
| Image Location and Privacy Scanner | Passively scans for GPS locations or embedded privacy related exposure (like camera serial numbers) in images during normal security assessments of websites via a Burp plug-in | ||
| Image Metadata | This extension extract metadata present in image files. The information found is rarely critical, but it can be useful for general reconnaissance. These information can be usernames who created the files, local paths and technologies used | ||
| ExifTool Scanner | This Burp extension reads metadata from various filetypes (JPEG, PNG, PDF, DOC, XLS and much more) using ExifTool. Results are presented as Passive scan issues and Message editor tabs | ||
| Interesting Files Scanner | 57 | over 6 years ago | Interesting Files Scanner extends Burp Suite's active scanner, with scans for interesting files and directories. A main feature of the extension is the check for false positives with tested patterns for each case |
| BeanStack - Stack-trace Fingerprinter | 52 | about 4 years ago | Java Fingerprinting using Stack Traces. Note that this extension sends potentially private stack-traces to a third party for processing |
| Directory Importer | 36 | over 1 year ago | This is a Burpsuite plugin for importing directory bruteforcing results into Burp for futher analysis |
| JS Link Finder | 744 | 8 months ago | Burp Extension for a passively scanning JavaScript files for endpoint links. - Export results the text file - Exclude specific 'js' files e.g. jquery, google-analytics |
| Secret Finder | A Burp Suite extension to help pentesters to discover a apikeys,accesstokens and more sensitive data using a regular expressions | ||
| Xkeys | 251 | 5 months ago | A Burp Suite Extension to extract interesting strings (key, secret, token, or etc.) from a webpage. and lists them as information issues |
| SSL Scanner | This extension enables Burp to scan for SSL vulnerabilities | ||
| Secret Finder (beta v0.1) | A Burp Suite extension to help pentesters to discover a apikeys,accesstokens and more sensitive data using a regular expressions | ||
| HTTP Methods Discloser | 46 | over 3 years ago | This extension makes a OPTIONS request and determines if other HTTP methods than the original request are available |
| Burp JS Miner | 54 | over 1 year ago | This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files |
| CYS4-SensitiveDiscoverer | 42 | 28 days ago | CYS4-SensitiveDiscoverer is a Burp Suite tool used to extract Regular Expression or File Extension form HTTP response automatically or at the end of all tests or during the test |
| GAP-Burp-Extension | 1,253 | 4 months ago | This is an evolution of the original getAllParams extension for Burp. Not only does it find more potential parameters for you to investigate, but it also finds potential links to try these parameters on |
| Levo Burp Extension | 24 | 4 months ago | Build OpenApi specs from Burp's traffic using Levo.ai. Also detect and classify the PII, and annotate specs with the PII details |
| Headers Burp Extension | 17 | over 1 year ago | It removes the hassle of reporting missing security headers in your pentest reports |
| Sensitive Discoverer | 42 | 28 days ago | Sensitive Discoverer, a Burp extension to discovers sensitive information inside HTTP messages |
Content / Vulnerability Specific Extensions / SQL/NoSQL Injection | |||
| CO2 | 151 | 9 months ago | A collection of enhancements for Portswigger's popular Burp Suite web penetration testing tool |
| SQLiPy | 253 | 5 months ago | SQLiPy is a Python plugin for Burp Suite that integrates SQLMap using the SQLMap API |
| burp-xss-sql-plugin | 44 | about 8 years ago | ublishing plugin which I used for years which helped me to find several bugbounty-worthy XSSes, OpenRedirects and SQLi |
| SQLiPy Sqlmap Integration | This extension integrates Burp Suite with SQLMap | ||
| InjectMate | 139 | over 5 years ago | Burp Extension that generates payloads for XSS, SQLi, and Header injection vulns |
| Burptime | 10 | over 5 years ago | Show time cost in burp proxy history, it's useful when testing time-based sql injection |
| SQLi Query Tampering | 150 | over 4 years ago | SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder |
| Burp NoSQLi Scanner | 23 | over 1 year ago | NoSQL Injection scans for Burp |
| SQLMap DNS Collaborator | 12 | about 3 years ago | SqlmapDnsCollaborator is a Burp Extension that lets you perform DNS exfiltration with Sqlmap with zero configuration needed |
Content / Vulnerability Specific Extensions / XXE | |||
| Office OpenXML Editor | 13 | almost 7 years ago | Burp extension that add a tab to edit Office Open XML document (xlsx,docx,pptx) |
| Content Type Converter | 149 | about 3 years ago | Burp extension to convert XML to JSON, JSON to XML, x-www-form-urlencoded to XML, and x-www-form-urlencoded to JSON |
Content / Vulnerability Specific Extensions / Insecure File Uploads | |||
| Upload Scanner | 482 | 11 months ago | A Burp Suite Pro extension to do security tests for HTTP file uploads |
| ZIP File Raider | 70 | about 4 years ago | Burp Extension for ZIP File Payload Testing |
| File Upload Traverser | This extension verifies if file uploads are vulnerable to directory traversal vulnerabilities | ||
Content / Vulnerability Specific Extensions / Directory Traversal | |||
| Uploader | 5 | over 7 years ago | Burp extension to test for directory traversal attacks in insecure file uploads |
| off-by-slash | 253 | about 3 years ago | Burp extension to detect alias traversal via NGINX misconfiguration at scale |
Content / Vulnerability Specific Extensions / Session Management | |||
| WAFDetect | This extension passively detects the presence of a web application firewall (WAF) from HTTP responses | ||
| TokenJar | This extension provides a way of managing tokens like anti-CSRF, CSurf, Session IDs | ||
| Token Incrementor | A simple but useful extension to increment a parameter in each request, intended for use with Active Scan | ||
| Token Extractor | This extension allows tokens to be extracted from a response and replaced in requests | ||
| Session Auth | This extension can be used to identify authentication privilege escalation vulnerabilities | ||
| Session Timeout Test | This extension attempts to determine how long it takes for a session to timeout at the server | ||
| Session Tracking Checks | This extension checks for the presence of known session tracking sites | ||
| ExtendedMacro | This extension provides a similar but extended version of the Burp Suite macro feature | ||
| AuthHeader Updater | 10 | about 6 years ago | Burp extension to specify the token value for the Authenication header while scanning |
| Request Randomizer | This extension registers a session handling rule which places a random value into a specified location within requests | ||
| BearerAuthToken | 46 | over 5 years ago | This burpsuite extender provides a solution on testing Enterprise applications that involve security Authorization tokens into every HTTP requests |
| Burp Wicket Handler | 2 | over 11 years ago | Used as part of Burps Session Handling, Record a Macro which just gets the page you want to submit |
| Add Request to Macro | 7 | over 6 years ago | This Burp extension lets you add a request to an existing macro |
| Cookie Decrypter | 12 | over 5 years ago | A Burp Suite Professional extension for decrypting/decoding various types of cookies |
| Authentication Token Obtain and Replace (ATOR) | 78 | 7 months ago | The plugin is created to help automated scanning using Burp in certain session management scenarios |
| Session-Handler-Plus | 2 | over 1 year ago | The Session Handler Plus (SH+) Burp Suite extension offers enhanced session handling capabilities for JWTs, access tokens, refresh tokens, and CSRF tokens. Additionally, it allows for custom scripts to be launched through session handling actions, and facilitates the triggering of Selenium automation to execute complex or JavaScript based login procedures |
Content / Vulnerability Specific Extensions / CORS Misconfigurations | |||
| CORS* - Additional CORS Checks | 9 | over 2 years ago | This extension can be used to test websites for CORS misconfigurations |
Content / Vulnerability Specific Extensions / Command Injection | |||
| Command Injection Attacker | 107 | over 5 years ago | a comprehensive OS command injection payload generator |
| Argument Injection Hammer | 118 | over 5 years ago | it is used to identify argument injection vulnerabilities, like etc, and sth just like these |
Content / Vulnerability Specific Extensions / Template Injection | |||
| tplmap Burp Extenson | 3,794 | 7 months ago | Burp extension for Tplmap, a Server-Side Template Injection and Code Injection Detection and Exploitation Tool |
Content / Vulnerability Specific Extensions / Type Confusion | |||
| Type Confusion Extension | 0 | over 1 year ago | This Burp Extension was created by Certus Cybersecurity to help find type confusion vulnerablities in applications |
Content / Vulnerability Specific Extensions / SSRF | |||
| Encode IP | 42 | 9 months ago | This extension will encode an IP address using a variety of lesser-known encoding techniques |
Content / Web Application Firewall Evasion | |||
| Bypass WAF | 330 | almost 7 years ago | Add headers to all Burp requests to bypass some WAF products |
| Random IP Address Header | 6 | almost 8 years ago | This extension automatically generates IPV6 and IPV4 fake source address headers to evade WAF filtering |
| Burp Suite HTTP Smuggler | 709 | over 5 years ago | A Burp Suite extension to help pentesters to bypass WAFs or test their effectiveness using a number of techniques |
| What-The-WAF | This extension adds a custom payload type to the Intruder tool, to help test for bypasses of Web Application Firewalls (WAFs) | ||
| WAF Cookie Fetcher | This extension allows web application security testers to register various types of cookie-related session handling actions to be performed by the Burp session handling rules | ||
| WAFDetect | This extension passively detects the presence of a web application firewall (WAF) from HTTP responses | ||
| LightBulb WAF Auditing Framework | LightBulb is an open source python framework for auditing web application firewalls and filters | ||
| BurpSuiteHTTPSmuggler | 709 | over 5 years ago | A Burp Suite extension to help pentesters to bypass WAFs or test their effectiveness using a number of techniques |
| Chunked coding converter | 1,939 | over 2 years ago | This entension use a Transfer-Encoding technology to bypass the waf |
| 403Bypasser | 54 | about 2 years ago | A Burp Suite extension made to automate the process of bypassing 403 pages |
| Awesome TLS | 1,243 | 12 days ago | This extension overrides Burp Suite's default HTTP and TLS stack to make it immune to WAF fingerprinting methods such as JA3, HTTP2 frames, etc |
| JSON Escaper | 2 | 2 months ago | The JSON Escaper Burp Suite plugin simplifies the process of escaping JSON payloads for pentesters, as there is no built-in option for this in Burp |
| WAF Bypadd | 4 | over 1 year ago | This Burp Suite extension is designed to bypass Web Application Firewalls (WAFs) by padding HTTP requests with dummy data |
Content / Logging and Notes | |||
| Burp Notes | 67 | 6 months ago | Burp Notes Extension is a plugin for Burp Suite that adds a Notes tab. The tool aims to better organize external files that are created during penetration testing |
| Logger++ | 628 | 6 months ago | Burp Suite Logger++: Log activities of all the tools in Burp Suite |
| Burp Dump | 24 | over 7 years ago | A Burp plugin to dump HTTP(S) requests/responses to a file system |
| Burp SQLite logger | 1 | about 3 years ago | SQLite logger for Burp Suite |
| Burp Git Version | 6 | about 1 year ago | Description not available |
| Burp Commentator | 6 | over 6 years ago | Generates comments for selected request(s) based on regular expressions |
| Burp Suite Importer | 48 | over 4 years ago | Connect to multiple web servers while populating the sitemap |
| Burp Replicator | 70 | 4 months ago | Burp extension to help developers replicate findings from pen tests |
| Notes | This extension adds a new tab to Burp's UI, for taking notes and organizing external files that are created during penetration testing | ||
| Log Requests to SQLite | This extension keeps a trace of every HTTP request that has been sent via BURP, in an SQLite database. This is useful for keeping a record of exactly what traffic a pen tester has generated | ||
| Flow | This extension provides a Proxy history-like view along with search filter capabilities for all Burp tools | ||
| Custom Logger | This extension adds a new tab to Burp's main UI containing a simple log of all requests made by all Burp tools | ||
| Log Requests to SQLite | 63 | 29 days ago | BURP extension to record every HTTP request send via BURP and create an audit trail log of an assessment |
| Burp Response Clusterer | 15 | over 5 years ago | Burp plugin that clusters responses to show an overview of received responses |
| Burp Collect500 | 5 | almost 8 years ago | Burp plugin that collects all HTTP 500 messages |
| Sink Logger | 50 | over 2 years ago | Sink Logger is a Burp Suite Extension that allows to transparently monitor various JavaScript sinks |
| Burp Scope Monitor Extension | 195 | over 3 years ago | A Burp Suite Extension to monitor and keep track of tested endpoints |
| Burp Savetofile | 18 | about 8 years ago | BurpSuite plugin to save just the body of a request or response to a file |
| Log Viewer | 9 | about 3 years ago | Lets you view log files generated by Burp in a graphical enviroment |
| Rapid | 7 | over 4 years ago | A fairly simple Burp Suite extension that enables you to save HTTP Requests and Responses to files a lot faster and in one go |
| Bookmarks | 66 | over 3 years ago | A Burp Suite extension to bookmark requests for later, instead of those 100 unnamed repeater tabs you've got open |
| Scope Monitor | 17 | over 3 years ago | A Burp Suite Extension to monitor and keep track of tested endpoints |
| Progress Tracker | 59 | over 4 years ago | Burp Suite extension to track vulnerability assessment progress |
| Pentest Mapper | 111 | over 1 year ago | A Burp Suite Extension for Application Penetration Testing to map flows and vulnerabilities and write test cases for each flow, API and http request |
Content / Payload Generators and Fuzzers | |||
| CO2 | 151 | 9 months ago | A collection of enhancements for Portswigger's popular Burp Suite web penetration testing tool |
| Bradamsa | 87 | about 7 years ago | Burp Suite extension to generate Intruder payloads using Radamsa |
| Payload Parser | 4 | over 11 years ago | Burp Extension for parsing payloads containing/excluding characters you provide |
| Burp Luhn Payload Processor | 10 | over 9 years ago | A plugin for Burp Suite Pro to work with attacker payloads and automatically generate check digits for credit card numbers and similar numbers that end with a check digit generated using the Luhn algorithm or formula (also known as the "modulus 10" or "mod 10" algorithm) |
| Gather Contacts | 185 | 5 months ago | A Burp Suite Extension to pull Employee Names from Google and Bing LinkedIn Search Results |
| Blazer | 48 | about 6 years ago | Burp Suite AMF Extension |
| Wordlist Extractor | Scrapes all unique words and numbers for use with password cracking | ||
| PsychoPATH | This extension provides a customizable payload generator, suitable for detecting a variety of file path vulnerabilities in file upload and download functionality | ||
| Meth0dMan | This extension helps with testing HTTP methods. It generates custom Burp Intruder payloads based on the site map, allowing quick identification of several HTTP method issues | ||
| Intruder File Payload Generator | This extension provides a way to use file contents and filenames as Intruder payloads | ||
| Intruder Time Payloads | This extension lets you include the current epoch time in Intruder payloads | ||
| reCAPTCHA | A burp plugin that automatically recognizes the graphics verification code and is used for Payload in Intruder | ||
| Virtual Host Payload Generator | 60 | about 7 years ago | Burp extension providing a set of values for the HTTP request Host header for the Burp Intruder in order to abuse virtual host resolution |
| Stepper | 194 | 10 months ago | Stepper is designed to be a natural evolution of Burp Suite's Repeater tool, providing the ability to create sequences of steps and define regular expressions to extract values from responses which can then be used in subsequent steps |
| Turbo Intruder | 1,499 | 18 days ago | Turbo Intruder is a Burp Suite extension for sending large numbers of HTTP requests and analyzing the results |
| HackBar | 1,539 | over 3 years ago | HackBar plugin for Burpsuite v1.0 |
| burpContextAwareFuzzer | 39 | over 3 years ago | BurpSuite's payload-generation extension aiming at applying fuzzed test-cases depending on the type of payload (integer, string, path; JSON; XML; GWT; binary) and following encoding-scheme applied originally |
| Adhoc Payload Processors | 3 | almost 3 years ago | Generate payload processors on the fly, without having to create individual extensions |
| Username Generator | 7 | about 5 years ago | This is a Python extension that will parse email addresses out of selected URLs from the target tab and display them in the output window of the Extensions tab |
| LogicalFuzzingEngine | 10 | about 2 years ago | A Burpsuite extension written in Python to perform basic validation fuzzing |
| Hashcat Maskprocessor Intruder Payloads | 19 | about 4 years ago | Burp Hashcat Maskprocessor Extension, inspired by hashcat maskprocessor |
| Fuzzy Encoding Generator | 6 | almost 3 years ago | This extension allows a user to quickly test various encoding for a given value in Burp Intruder |
| HopLa | 712 | over 3 years ago | This extension adds autocompletion support and useful payloads in Burp Suite to make your intrusion easier |
| Agartha - LFI, RCE, SQLi, Authentication, Authorization and Copy as JavaScript | 355 | about 1 month ago | Agartha is a penetration testing tool which creates dynamic payload lists and user access matrix to reveal injection flaws and authentication/authorization issues |
| ParaForge | 140 | over 1 year ago | ParaForge is a simple Burp Suite extension to extract the paramters and endpoints from the request to create custom wordlist for fuzzing and enumeration |
| GAP (Get All Parameters, Links, and Words) | 1,253 | 4 months ago | This extension helps find potential endpoints, parameters, and generate a custom target wordlist |
| Sheet Intruder | 2 | 8 months ago | Sheet Intruder is a Burp Suite extension designed to simplify the process of fuzzing for Excel file uploads. It works by representing the content of an Excel file as a tag, which can then be integrated into various locations. This tag then allows configuration such as replacements for fuzzing targets |
| URL Fuzzer 401/403 Bypass | 7 | about 1 year ago | A Burp extension to Fuzz URLs for HTTP parser inconsistencies |
Content / Cryptography | |||
| WhatsApp Protocol Decryption Burp Tool | 637 | about 5 years ago | This tool was created during our research on Whatsapp Protocol |
| AES Burp/AES Payloads | 25 | over 7 years ago | Burp Extension to manipulate AES encrypted payloads |
| Crypto Attacker | 2 | almost 8 years ago | The extension helps detect and exploit some common crypto flaws |
| AES Killer | 634 | over 2 years ago | Burp plugin to decrypt AES Encrypted traffic of mobile apps on the fly |
| Length Extension Attacks | This extension lets you perform hash length extension attacks on weak signature mechanisms | ||
| TLS-Attacker-BurpExtension | 35 | over 4 years ago | The extension is based on the TLS-Attacker and developed by the Chair for Network and Data Security from the Ruhr-University Bochum to assist pentesters and security researchers in the evaluation of TLS Server configurations with Burp Suite |
| Resign v2.0 | 60 | about 2 years ago | A burp extender that recalculate signature value automatically after you modified request parameter value.but you need to know the signature algorithm detail and configure at GUI |
| BurpCrypto | 1,447 | over 1 year ago | Burpcrypto is a collection of burpsuite encryption plug-ins, supporting AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite) |
| Padding Oracle Hunter | 14 | 4 months ago | Padding Oracle Hunter is a Burp Suite extension that helps penetration testers quickly identify and exploit the PKCS#7 and PKCS#1 v1.5 padding oracle vulnerability |
| PyCript | 186 | 5 months ago | Burp Suite extension that allows for bypassing client-side encryption using custom logic for manual and automation testing with Python and NodeJS. It enables efficient testing of encryption methods and identification of vulnerabilities in the encryption process |
| Add To TLS Pass Through Extension | 3 | 10 months ago | Burp Extension to add context menus for configuration of the Add to TLS Pass Through setting |
Content / Web Services | |||
| WCF-Binary-SOAP-Plug-In | 46 | almost 5 years ago | This is a Burp Suite plug-in designed to encode and decode WCF Binary Soap request and response data ("Content-Type: application/soap+msbin1) |
| WSDL Wizard | 13 | over 10 years ago | WSDL Wizard is a Burp Suite plugin written in Python to detect current and discover new WSDL (Web Service Definition Language) files |
| BurpWCFDSer | 149 | about 3 years ago | BurpWCFDSer is a Burp plugin that will deserialze/serialize WCF request and response to and from XML |
| JSWS | 7 | almost 8 years ago | Burp Extenstion to parse JavaScript WebService Proxies and create sample requests |
| JSON Decoder | 10 | almost 5 years ago | This extension adds a new tab to Burp's HTTP message editor, and displays JSON messages in decoded form |
| WSDLer | 214 | over 6 years ago | WSDL Parser extension for Burp |
| POST2JSON | 11 | over 11 years ago | Burp Suite Extension to convert a POST request to JSON message, moving any .NET request verification token to HTTP headers if present |
| WCF Deserializer | This extension allows Burp to view and modify binary SOAP objects | ||
| Postman Integration | This extension integrates with the Postman tool by generating a Postman collection JSON file | ||
| OpenAPI Parser | Parse OpenAPI specifications, previously known as Swagger specifications, into the BurpSuite for automating RESTful API testing – approved by Burp for inclusion in their official BApp Store | ||
| Content Type Converter | 149 | about 3 years ago | Burp extension to convert XML to JSON, JSON to XML, x-www-form-urlencoded to XML, and x-www-form-urlencoded to JSON |
| Burp Non HTTP Extension | 1,560 | 6 months ago | Non-HTTP Protocol Extension (NoPE) Proxy and DNS for Burp Suite |
| Swurg | 193 | 11 months ago | Swurg is a Burp Suite extension designed for OpenAPI testing |
| WCFDSer-ngng | 29 | almost 3 years ago | A Burp Extender plugin, that will make binary soap objects readable and modifiable |
| UPnP Hunter | 16 | about 3 years ago | This extension finds active UPnP services/devices and extracts the related SOAP requests (IPv4 and IPv6 are supported), it then analyzes them using any of the various Burp tools (i.e. Intruder, Repeater) |
| burp-suite-swaggy | 19 | about 2 months ago | Burp Suite extension for parsing Swagger web service definition files |
| Burp WS-Security | 0 | almost 5 years ago | This extension calculate a valid WS security token for every request (In Proxy, Scanner, Intruder, Repeater, Sequencer, Extender), and replace variables in theses requests by the valid token |
| 5GC_API_parse | 73 | over 3 years ago | 5GC API parse is a BurpSuite extension allowing to assess 5G core network functions, by parsing the OpenAPI 3.0 not supported by previous OpenAPI extension in Burp, and generating requests for intrusion tests purposes |
| SwaggerParser-BurpExtension | 42 | 8 months ago | With this extension, you can parse Swagger Documents. You can view the parsed requests in the table and send them to Repeater, Intruder, Scanner |
Content / Tool Integration | |||
| Report To Elastic Search | This extension passes along issues discovered by Burp to either stdout or an ElasticSearch database | ||
| Qualys WAS | The Qualys WAS Burp extension provides a way to easily push Burp scanner findings to the Web Application Scanning (WAS) module within the Qualys Cloud Platform | ||
| NMAP Parser | This extension provides a GUI interface for parsing Nmap output files, and adding common web application ports to Burp's target scope | ||
| WebInspect Connector | 0 | almost 8 years ago | Binary-only repository for the HP WebInspect Connector, authored by HP |
| Faraday | This extension integrates Burp with the Faraday Integrated Penetration-Test Environment | ||
| Git Bridge | This extension lets Burp users store Burp data and collaborate via git. Users can right-click supported items in Burp to send them to a git repo and use the Git Bridge tab to send items back to the originating Burp tools | ||
| Issue Poster | This extension can be used to post details of discovered Scanner issues to an external web service | ||
| Code Dx | This extension uploads scan reports directly to CodeDx, a software vulnerability correlation and management system | ||
| ElasticBurp | This extension stores requests and responses from selected Burp tools in an ElasticSearch index including metadata like headers and parameters | ||
| Dradis Framework | This extension integrates Burp with the Dradis Framework | ||
| Burp Dirbuster | 70 | almost 8 years ago | Dirbuster plugin for Burp Suite |
| Pcap Importer | This extension enables Pcap and Pcap-NG files to be imported into the Burp Target site map, and passively scanned | ||
| Brida | 1,645 | 8 months ago | Brida is a Burp Suite Extension that, working as a bridge between Burp Suite and Frida, lets you use and manipulate applications’ own methods while tampering the traffic exchanged between the applications and their back-end services/servers |
| Burp Chat | This extension enables collaborative usage of Burp using XMPP/Jabber. You can send items between Burp instances by connecting over a chat session | ||
| ThreadFix | This extension provides an interface between Burp and ThreadFix | ||
| Nessus Loader | 4 | over 5 years ago | his extension parses a Nessus scan XML file to detect web servers. Any web servers discovered are added to the site map |
| Peach API Integration | 2 | almost 6 years ago | This Burp plugin provides integration between Burp and Peach API Security |
| YesWeBurp | 74 | 4 months ago | YesWeBurp is an extension for BurpSuite allowing you to access all your bug bounty programs directly inside Burp |
| Nucleus Burp Extension | 3 | over 1 year ago | This extension allows Burp Suite scans to be pushed to the Nucleus platform |
| Import To Sitemap | 6 | almost 2 years ago | Import To Sitemap is a Burp Suite Extension to import wstalker CSV file or ZAP export file into Burp Sitemap |
| bbrf-burp-plugin | 24 | 5 days ago | Extension for Bug Bounty Reconnaissance Framework |
| GAT Security Platform Integration | 0 | 8 days ago | Burp Extension, integration GAT Digital |
| Nuclei Template Generator Burp Plugin | 1,192 | 2 months ago | A BurpSuite plugin intended to help with nuclei template generation |
| Semgrepper | 87 | about 1 year ago | The current project provides a Burp Suite extension to allow users to include Semgrep results to extend the checks in use by the passive scanner |
| Burptrast | 16 | about 1 month ago | Burptrast is designed to pull endpoint information from Teamserver and import it into Burp's sitemap |
| Faction Burp Suite Extension | 13 | 8 months ago | This Burp Suite Extension allows you to integrate BurpSuite into the Faction assessment collaboration framework |
Content / Misc | |||
| knife | 1,625 | 3 months ago | A burp extension that add some useful function to Context Menu. This includes , to the right click context menu, of Hackbar or self-configured to current request |
| Burp Rest API | 547 | 6 months ago | REST/JSON API to the Burp Suite security tool |
| Burpa | 481 | over 6 years ago | A Burp Suite Automation Tool |
| CVSS Calculator | This extension calculates CVSS v2 and v3 scores of vulnerabilities | ||
| Burp Uniqueness | 7 | almost 3 years ago | Uniqueness plugin for Burp Suite |
| Sample Burp Suite extension: custom scanner checks | 15 | almost 3 years ago | Sample Burp Suite extension: custom scanner checks |
| Burp Bing translator | 8 | over 6 years ago | Testing non-English web apps is pretty straight forward which you can just use browser extension to translate what you see on screens |
| Similar Request Excluder | 43 | over 4 years ago | A Burp Suite extension that automatically marks similar requests as 'out-of-scope' |
| jython-burp-api | 180 | about 8 years ago | Develop Burp extensions in Jython |
| Jython Burp Extensions | 5 | about 12 years ago | Description not available |
| Add Custom Header | 19 | almost 3 years ago | A Burp Suite extension to add a custom header (e.g. JWT) |
| Target Redirector | This extension allows you to redirect requests to a particular target by replacing an incorrect target hostname/IP with the intended one. The Host header can optionally also be updated | ||
| Similar Request Excluder | Similar Request Excluder is an extension that enables you to automatically reduce the target scope of your active scan by excluding similar (and therefore redundant) requests | ||
| Request Timer | This extension captures response times for requests made by all Burp tools. It could be useful in uncovering potential timing attacks | ||
| Response Clusterer | This extension clusters similar responses together, and shows a summary with one request/response per cluster. This allows the tester to get an overview of the tested website's responses from all Burp Suite tools | ||
| Hackbar | 1,539 | over 3 years ago | HackBar plugin for Burpsuite v1.0 |
| HUNT | 2,183 | 12 months ago | HUNT Suite is a collection of Burp Suite Pro/Free and OWASP ZAP extensions. Identifies common parameters vulnerable to certain vulnerability classes (Burp Suite Pro and OWASP ZAP). Organize testing methodologies (Burp Suite Pro and Free) |
| Autowasp | 74 | about 2 years ago | a Burp Suite extension that integrates Burp issues logging, with OWASP Web Security Testing Guide (WSTG), to provide a streamlined web security testing flow for the modern-day penetration tester |
| Replicator | Replicator helps developers to reproduce issues discovered by pen testers | ||
| Kerberos Authentication | This extension provides support for performing Kerberos authentication. This is useful for testing in a Windows domain when NTLM authentication is not supported | ||
| Kerberos Upstream Proxy Extension for Burp Suite | 2 | 7 months ago | An extension to allow the use of Burp Suite with an upstream proxy that requires Kerberos authentication |
| JVM Property Editor | This extension allows the user to view and modify JVM system properties while Burp is running | ||
| Lair | This extension provides the facility to send Burp Scanner issues directly to a remote Lair project | ||
| Google Authenticator | This Burp Suite extension turns Burp into a Google Authenticator client | ||
| GWT Insertion Points | This extension automatically identifies insertion points for GWT (Google Web Toolkit) requests when sending them to the active Scanner or Burp Intruder | ||
| Headless Burp | This extension allows you to run Burp Suite's Spider and Scanner tools in headless mode via the command-line | ||
| HTTP Mock | This Burp extension provides mock responses that can be customized, based on the real ones | ||
| Carbonator | This extension provides a command-line interface to automate the process of configuring target scope, spidering and scanning | ||
| Batch Scan Report Generator | This extension can be used to generate multiple scan reports by host with just a few clicks | ||
| Decompressor | Often, HTTP traffic is compressed by the server before it is sent to the client in order to reduce network load | ||
| Custom Parameter Handler | This extension provides a simple way to modify any part of an HTTP message, allowing manipulation with surgical precision even (and especially) when using macros | ||
| CFURL Cache inspector for Burp Suite | 18 | almost 4 years ago | CFURL Cache inspector for Burp Suite |
| Proxy Auto Config | This extension automatically configures Burp upstream proxies to match desktop proxy settings | ||
| Proxy Action Rules | 8 | over 5 years ago | This extension can automatically forward, intercept, and drop proxy requests while actively displaying proxy log information and centralizing list management |
| Perfmon | 1 | over 6 years ago | Perfmon is an extension for Burp Suite that shows information about threads, memory being used, and memory allocated |
| Unicode To Chinese | 236 | almost 3 years ago | A burpsuite Extender That Convert Unicode To Chinese |
| Curlit | 17 | over 10 years ago | Burp Python plugin to turn requests into curl commands |
| burp-suite-paste-curl | 4 | 29 days ago | Burp Suite extension to allow pasting cURL commands into a new tab in Repeater. The pasted cURL command will be parsed into a raw HTTP request suitable for use with Repeater |
| Copy as FFUF Command | 1 | 6 months ago | Burp Suite extension for FFUF command generation |
| BurpSuite-Team-Extension | 252 | about 2 years ago | This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time |
| BurpelFish | 5 | about 6 years ago | Adds Google Translate to Burp's context menu |
| BlockerLite | 1 | over 4 years ago | Simple Burp extension to drop blacklisted hosts |
| Filter Options Method | 7 | about 2 years ago | Burp extension that filters out OPTIONS requests from populating Burp's Proxy history |
| Burp-Quicker-Context-Extension | 4 | almost 5 years ago | This extension adds the "Quicker Context" dialog which is a lightweight dialog to select tabs or execute application- and context-menu-entries more easily by typing parts of the name or choosing one stored in history |
| Burp Share Requests | 12 | over 2 years ago | This Burp Suite extension enables the generation of shareable links to specific requests which other Burp Suite users can import |
| Tea Break | 17 | over 4 years ago | Burp Suite extension to increase productivity among bug bounty hunters and security researchers while prompting to take break after set time to avoid burnout and health issues |
| Turbo Data Miner | 54 | almost 2 years ago | This extension adds a new tab Turbo Miner to Burp Suite's GUI as well as an new entry Process in Turbo Miner to Burp Suite's context menu. In the new tab, you are able to write new or select existing Python scripts that are executed on each request/response item currently stored in the Proxy History, Side Map, or on each request/response item that is sent or received by Burp Suite |
| BugPoC | 7 | over 4 years ago | Burp Suite Extension to send raw HTTP Requests to BugPoC.com |
| Burp Customizer | 551 | about 2 years ago | This extension allows you to use these themes in Burp Suite, and includes a number of bundled themes to try |
| FixerUpper | 13 | almost 2 years ago | A Burp extension to enable modification of FIX messages when relayed from MitM_Relay |
| SourceMapper | 4 | 2 months ago | This is a Burpsuite extension for injecting offline source maps for easier JavaScript debugging |
| uproot-JS | 78 | almost 3 years ago | Extract JavaScript files from burp suite project with ease |
| OData Explorer | OData Explorer is a Burp Suite extension specifically designed for black-box security testing of OData services | ||
| Copy to Bcheck | 30 | over 1 year ago | The purpose of this extension is to streamline the process of creating simple bcheck scripts, reducing the time required to generate them |
| Copy Headers As -H Arguments | 5 | almost 2 years ago | The "Copy Headers As -H Arguments" Burp Suite extension adds a new context menu entry that will copy the headers from the selected request to the clipboard in various formats |
| Burp Suite History Explorer | 1 | 5 months ago | This extension was developed to assist in filtering search results by host. During a large assessment I conducted, I wanted a clear view of which servers were operating on which software. While searching in Burp for the Server: .*, it returned the desired information, but I still had to sift through each request |
| Asset Saver - Burp Suite | 3 | 8 months ago | Burp Suite extension for saving previously loaded assets |
| BCheck Helper | 6 | 10 months ago | BCheck Helper makes finding and importing BChecks scripts into Burp easier by loading them from either a remote GitHub or local Git repository |
| Change Menu Level | 27 | 10 months ago | A simple BurpSuite extension to change extension context menu level, using in BurpSuite v2021.7 version and newer |
| Header Snipper | 22 | about 1 year ago | This extension will improve the user reporting experience. The extension is used to snip any header from all the requests with just 1 click! |
Content / Burp Extension Training Resources | |||
| Burp Extension Generator | 152 | almost 2 years ago | |
| Burp plugin development for java n00bs - Marc Wickenden | |||
| Developing Burp Suite Extensions - Doyensec | 347 | about 4 years ago | |
| Writing your first Burp Suite extension - Portswigger | |||
| Burp Extension Writing Workshop - Sanoop Thomas | |||
| Extending Burp with Python | |||
| Creating Burp Extensions in | |||
| Burp Extensions in and Pentesting Custom Webservices - Neohapsis | |||
| Writing Burp Suite Marcos and Plugins - Pluralsight | |||
| Extending Burp with Extensions - Chris Bush | |||
| Burp Suite Extension Development series - Prakhar Prasad | |||
| BSidesCHS 2015: Building Burp Extensions - Jason Gillam | |||
| Intro to Burp Extender Jython - nVisium | |||
| Intro to Burp Extender Java - nVisium | |||
| Web Penetration Testing with Burp and the CO2 Extension - Jason Gillam | |||
| Developing Burp Suite Extensions with Luca Carettoni - eLearnSecurity | |||
| Quick start your Burp Suite extensions Jython and automation - Marius Nepomuceno | |||
| Writing a Burp Extension – Part One - Carl Sampson | |||
| OWASP Bay Area - Writing Burp Extensons | |||
| Portswigger - The top 10 best pentesting tools and extensions in Burp Suite | |||
| Burp Suite Webinar for h1-702 | |||
| Burp Suite 2 Series | |||
| Hacker101 - Burp Suite Playlist | |||
| AIAIAI | 30 | 7 months ago | |