AuthMatrix is an extension to Burp Suite that provides a simple way to test authorization in web applications and web services. With AuthMatrix, testers focus on thoroughly defining tables of users, roles, and requests for their specific target application upfront. These tables are structured in a similar format to that of an access control matrixRead More
A security testing tool to facilitate GraphQL technology security auditing efforts. InQL can be used as a stand-alone script or as a Burp Suite extension.InQL Stand-Alone CLIRunning inql from Python will issue an Introspection query to the target GraphQL endpoint in order fetch metadata information for: Queries, mutations, subscriptions Its fields and arguments Objects andRead More
TeaBreak is a simple burp extension for security researchers and bug bounty hunters for helping them to increase their work productivity. We know how much health is important. It is recommended to take break from your work to avoid burnout, reduce eye strain and other health problems.How? Set your break time before commencement of yourRead More
Everything You Need About Burp Extension Generation InstallationFirst, install Yeoman and generator-burp-extension using npm (we assume you have pre-installed node.js). npm install -g yonpm install -g generator-burp-extension Then generate your new project: yo burp-extension Burp Extension featuresWhen you generate your plugin project, the generator will ask you what features should be included in your plugin.Read More
Exporter is a Burp Suite extension to copy a request to the clipboard as multiple programming languages functions.You can export as: cURL Wget Python Request Perl LWP PHP HTTP_Request2 Go Native NodeJS Request jQuery AJAX PowerShell Requirements Jython >= 2.7.1 Burp Suite importIn Burp Suite, under the Extender/Extensions tab, click on the Add button, selectRead More
A security testing tool to facilitate GraphQL technology security auditing efforts. InQL can be used as a stand-alone script, or as a Burp Suite extension.InQL Stand-AloneRunning inql from Python will issue an Introspection query to the target GraphQL endpoint in order fetch metadata information for: Queries, mutations, subscriptions Its fields and arguments Objects and customRead More
Burp Suite extension to track vulnerability assessment progress. Features Capture items (unique requests) from the Burp Suite tools (Proxy, Repeater, Target). Request unique key is defined as follows: target (host, port, protocol), path and method. Items have following editable properties: comment status (Blocked, Done, Ignored, In progress, New, Postponed) tags Items can be filtered by:Read More
A Burp Suite extension to help pentesters to generate a random user-agent. This extension has been developed by M’hamed (@m4ll0k) Outaadi.InstallationDownload a jar file in release or compile the java code: $ git clone https://github.com/m4ll0k/BurpSuite-Random_UserAgent.git random-useragents$ cd random-useragents/src/main/java$ javac burp/*.java$ jar cf random-useragents.jar burp/*.class video installation video Download BurpSuite-Random_UserAgent
