Loading...

Popular Free Commercial Categories Tasks Blog

CybersecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

Operated by:

Mandos Cyber • KVK: 97994448

Netherlands • contact@mandos.io

VAT: NL005301434B12

Copyright © 2025 - All rights reserved

LINKS

LEGAL

Terms of services Privacy policy

Burp Suite

Explore 19 curated tools and resources

Search by name, description, or purpose... (⌘+K)

Home
Tasks
Burp Suite

PINNED

Promoted • 6 tools

Commercial

Data Protection

Commercial

Network Security

Commercial

Consulting

Commercial

Application Security

Commercial

Cloud Security

Commercial

Application Security

Want your tool featured here?

Get maximum visibility with pinned placement

LATEST ADDITIONS

Burp Suite Professional
A web application security testing platform that combines manual and automated testing tools for conducting comprehensive security assessments and penetration testing.
0
Commercial
Offensive Security
Penetration Testing
Web Security
Scanner
Proxy
Security Testing
Vulnerability Assessment
Api Security
Burp Suite
Web App Security
Security Automation
Burp Suite Professional
A web application security testing platform that combines manual and automated testing tools for conducting comprehensive security assessments and penetration testing.
0
Commercial
Offensive Security
Penetration Testing
Web Security
Scanner
+7
Bento Toolkit
A Docker-based penetration testing toolkit that provides a portable environment with GUI support and pre-installed security tools for web application testing and CTF activities.
0
Free
Offensive Security
Penetration Testing
Docker
Ctf
Offensive Security
Web Security
Burp Suite
Containers
Gui
Pentesting
Bento Toolkit
A Docker-based penetration testing toolkit that provides a portable environment with GUI support and pre-installed security tools for web application testing and CTF activities.
0
Free
Offensive Security
Penetration Testing
Docker
Ctf
+6
IntruderPayloads
A collection of payloads and methodologies for web pentesting.
0
Free
Offensive Security
Burp Suite
Payloads
Fuzzing
Pentesting
Security Testing
IntruderPayloads
A collection of payloads and methodologies for web pentesting.
0
Free
Offensive Security
Burp Suite
Payloads
Fuzzing
+2
Burp-LFI-tests
A collection of Local File Inclusion (LFI) vulnerability tests and exploitation techniques designed for use with Burp Suite.
0
Free
Application Security
Burp Suite
Lfi
Local File Inclusion
Web Application Security
Vulnerability Testing
Penetration Testing
Educational
Fuzzing
Web Security
Appsec Testing
Burp-LFI-tests
A collection of Local File Inclusion (LFI) vulnerability tests and exploitation techniques designed for use with Burp Suite.
0
Free
Application Security
Burp Suite
Lfi
Local File Inclusion
+7
InQL
InQL is a Burp Suite extension for advanced GraphQL testing and vulnerability detection
0
Free
Application Security
Graphql
Burp Suite
Vulnerability Detection
InQL
InQL is a Burp Suite extension for advanced GraphQL testing and vulnerability detection
0
Free
Application Security
Graphql
Burp Suite
Vulnerability Detection
BurpJSLinkFinder
A Burp Suite extension that passively scans JavaScript files to discover endpoint links and potential attack surfaces in web applications.
0
Free
Application Security
Burp Suite
Javascript
Endpoint Security
Web Application Security
Vulnerability Assessment
Static Analysis
Dynamic Analysis
Api Security
Penetration Testing
BurpJSLinkFinder
A Burp Suite extension that passively scans JavaScript files to discover endpoint links and potential attack surfaces in web applications.
0
Free
Application Security
Burp Suite
Javascript
Endpoint Security
+6
Femida
Femida is a Python automation tool that integrates with Burp Suite to detect blind XSS vulnerabilities in web applications through HTTP request analysis.
0
Free
Application Security
Blind Xss
Xss
Burp Suite
Python
Automation
Web Application Security
Vulnerability Scanner
Penetration Testing
Open Source
Cli Tool
Femida
Femida is a Python automation tool that integrates with Burp Suite to detect blind XSS vulnerabilities in web applications through HTTP request analysis.
0
Free
Application Security
Blind Xss
Xss
Burp Suite
+7
xssValidator
A Burp Suite extension that automates XSS vulnerability detection and validation through custom payload generation and response analysis.
0
Free
Application Security
Xss
Burp Suite
Vulnerability Scanner
Web Application Security
Payload Generation
Automation
Penetration Testing
Vulnerability Detection
Security Testing
Appsec
xssValidator
A Burp Suite extension that automates XSS vulnerability detection and validation through custom payload generation and response analysis.
0
Free
Application Security
Xss
Burp Suite
Vulnerability Scanner
+7
Turbo Intruder
A Burp Suite extension for sending large numbers of HTTP requests and analyzing the results.
0
Free
Offensive Security
Burp Suite
Vulnerability Scanning
Http Requests
Penetration Testing
Security Testing
Turbo Intruder
A Burp Suite extension for sending large numbers of HTTP requests and analyzing the results.
0
Free
Offensive Security
Burp Suite
Vulnerability Scanning
Http Requests
+2
off-by-slash
A Burp Suite extension that detects NGINX alias traversal vulnerabilities by analyzing HTTP traffic patterns to identify path traversal misconfigurations.
0
Free
Application Security
Burp Suite
Nginx
Directory Traversal
Vulnerability Scanner
Web Application Security
Penetration Testing
Misconfiguration
Web Security
Appsec
off-by-slash
A Burp Suite extension that detects NGINX alias traversal vulnerabilities by analyzing HTTP traffic patterns to identify path traversal misconfigurations.
0
Free
Application Security
Burp Suite
Nginx
Directory Traversal
+6
GraphQL Beautifier
A Burp Suite extension that formats GraphQL requests for easier reading
0
Free
Network Security
Graphql
Burp Suite
Security Testing
GraphQL Beautifier
A Burp Suite extension that formats GraphQL requests for easier reading
0
Free
Network Security
Graphql
Burp Suite
Security Testing
Burp Anonymous Cloud
A Burp Suite extension that uses Shodan to discover cloud buckets and tests them for publicly accessible vulnerabilities through passive scanning.
0
Free
Application Security
Burp Suite
Cloud Security
Vulnerability Scanner
Cloud
S3
Shodan
Application Security
Security Testing
Cloud Audit
Burp Anonymous Cloud
A Burp Suite extension that uses Shodan to discover cloud buckets and tests them for publicly accessible vulnerabilities through passive scanning.
0
Free
Application Security
Burp Suite
Cloud Security
Vulnerability Scanner
+6
Autorize
Automatic authorization enforcement detection extension for Burp Suite
0
Free
Application Security
Burp Suite
Authorization
Security Testing
Autorize
Automatic authorization enforcement detection extension for Burp Suite
0
Free
Application Security
Burp Suite
Authorization
Security Testing
Rexsser
A Burp Suite plugin that extracts keywords from HTTP responses using regex patterns and tests for reflected XSS vulnerabilities within the target scope.
0
Free
Application Security
Burp Suite
Xss
Xss Scanner
Plugin
Vulnerability Scanner
Web Application Security
Regex
Open Source
Vulnerability Detection
Rexsser
A Burp Suite plugin that extracts keywords from HTTP responses using regex patterns and tests for reflected XSS vulnerabilities within the target scope.
0
Free
Application Security
Burp Suite
Xss
Xss Scanner
+6
Payloads All The Things
A comprehensive repository of payloads and bypass techniques for web application security testing and penetration testing across multiple platforms and attack vectors.
0
Free
Offensive Security
Offensive Security
Penetration Testing
Web Application Security
Payloads
Burp Suite
Active Directory
Aws
Azure
Linux
Metasploit
Windows
Subdomain Enumeration
Reverse Shell
Exploitation
Vulnerability Assessment
Security Testing
Pentesting
Web Security
Cloud Security
Payloads All The Things
A comprehensive repository of payloads and bypass techniques for web application security testing and penetration testing across multiple platforms and attack vectors.
0
Free
Offensive Security
Offensive Security
Penetration Testing
Web Application Security
+16
Xss-Sql-Fuzz
A Burp Suite plugin for automatically adding XSS and SQL payload to fuzz
0
Free
Malware Analysis
Burp Suite
Fuzzing
Xss
Sql Injection
Payload Generation
Xss-Sql-Fuzz
A Burp Suite plugin for automatically adding XSS and SQL payload to fuzz
0
Free
Malware Analysis
Burp Suite
Fuzzing
Xss
+2
Yara-Scanner
A Python-based Burp Suite extension that integrates Yara scanning capabilities for detecting patterns and signatures in web application traffic using custom Yara rules.
0
Free
Application Security
Application Security
Burp Suite
Yara
Yara Rules
Web Application Security
Pattern Matching
Python
Scanner
Security Testing
Appsec
Yara-Scanner
A Python-based Burp Suite extension that integrates Yara scanning capabilities for detecting patterns and signatures in web application traffic using custom Yara rules.
0
Free
Application Security
Application Security
Burp Suite
Yara
+7
Burp-Yara-Rules
A collection of Yara rules for the Burp Yara-Scanner extension that helps identify malicious software and infected web pages during web application security assessments.
0
Free
Application Security
Yara
Yara Rules
Burp Suite
Web Application Security
Malware Detection
Application Security
Penetration Testing
Security Scanning
Web Security
Malware Analysis
Burp-Yara-Rules
A collection of Yara rules for the Burp Yara-Scanner extension that helps identify malicious software and infected web pages during web application security assessments.
0
Free
Application Security
Yara
Yara Rules
Burp Suite
+7
BurpSmartBuster
A Burp Suite plugin that performs intelligent content discovery by analyzing current requests to identify directories, files, and variations based on the application's structure.
0
Free
Application Security
Burp Suite
Web Security
Directory Scanning
Application Security
Penetration Testing
Plugin
Web Application Security
Scanner
Reconnaissance
BurpSmartBuster
A Burp Suite plugin that performs intelligent content discovery by analyzing current requests to identify directories, files, and variations based on the application's structure.
0
Free
Application Security
Burp Suite
Web Security
Directory Scanning
+6

1