HTTPHeadModifer - 一款快速修改HTTP数据包头的Burp Suite插件

  •        12

一款快速修改HTTP数据包头的Burp Suite插件

https://github.com/c0ny1/HTTPHeadModifer

Tags
Implementation
License
Platform

   




Related Projects

BadIntent - Intercept, modify, repeat and attack Android's Binder transactions using Burp Suite

  •    Java

BadIntent is the missing link between the Burp Suite and the core Android's IPC/Messaging-system. BadIntent consists of two parts, an Xposed-based module running on Android and a Burp-plugin. Based on this interplay, it is possible to use the Burp's common workflow and all involved tools and extensions, since the intercept and repeater functionality is provided. BadIntent hooks deeply into the Android system, performs various method redirections in Parcels and adds additional services to provide the described features. Most notably, BadIntent works system-wide (experimental) and is not restricted to individual user apps. The most handy approach is to install BadIntent Android from the Xposed Module Repository and BadIntent Burp from the Burp’s BApp Store. Both are made available/submitted before the Arsenal presentation of BadIntent in Black Hat Las Vegas 2017.

pappy-proxy - An intercepting proxy for web application testing

  •    Python

The Pappy (Proxy Attack Proxy ProxY) Proxy is an intercepting proxy for performing web application security testing. Its features are often similar, or straight up rippoffs from Burp Suite. However, Burp Suite is neither open source nor a command line tool, thus making a proxy like Pappy inevitable. I am taking any and all feature requests. If you've used Burp and had any inconvenience with it, tell me about it and I'll do everything in my power to make sure Pappy doesn't have those issues. Or even better, if you want Burp to do something that it doesn't already, let me know so that I can use it to stomp them into the dust improve my project.

Brida - The new bridge between Burp Suite and Frida!

  •    Java

Brida is a Burp Suite Extension that, working as a bridge between Burp Suite and Frida, lets you use and manipulate applications’ own methods while tampering the traffic exchanged between the applications and their back-end services/servers. It supports all platforms supported by Frida (Windows, macOS, Linux, iOS, Android, and QNX).

Common.Utility - 比较全面的c#帮助类,各种功能性代码。

  •    CSharp

网上有各式各样的帮助类,公共类,但是比较零碎,经常有人再群里或者各种社交账号上问我有没有这个helper, 那个helper,于是萌生了收集全部helper的念头,以便日后使用. 于是日常工作留意总结,加上网上收集,各式各样的几乎都能找到,所有功能性代码都是独立的类,类与类之间没有联系,可以单独引用至项目,分享出来,方便大家,几乎都有注释,喜欢的请点赞(star),不断完善收集中...

burp backup and restore program

  •    

Burp is a backup and restore program. It uses librsync in order to save on the amount of space that is used by each backup. It also uses VSS (Volume Shadow Copy Service) to make snapshots when backing up Windows computers.


AuthMatrix - AuthMatrix is a Burp Suite extension that provides a simple way to test authorization in web applications and web services

  •    Python

AuthMatrix is an extension to Burp Suite that provides a simple way to test authorization in web applications and web services. With AuthMatrix, testers focus on thoroughly defining tables of users, roles, and requests for their specific target application upfront. These tables are structured in a similar format to that of an access control matrix common in various threat modeling methodologies. Once the tables have been assembled, testers can use the simple click-to-run interface to kick off all combinations of roles and requests. The results can be confirmed with an easy to read, color-coded interface indicating any authorization vulnerabilities detected in the system. Additionally, the extension provides the ability to save and load target configurations for simple regression testing.

Java-Deserialization-Scanner - All-in-one plugin for Burp Suite for the detection and the exploitation of Java deserialization vulnerabilities

  •    Java

Java Deserialization Scanner is a Burp Suite plugin aimed at detect and exploit Java deserialization vulnerabilities. It was written by Federico Dotta, a Security Advisor at @ Mediaservice.net. In the test folder there are some simple Java server applications that can be used to test the plugin. Every application employ a different vulnerable Java library.

sp-dev-fx-extensions - Code samples and developer content targeted towards SharePoint Framework client-side extensions

  •    TypeScript

This repository contains the samples that demonstrate different usage patterns for the SharePoint Framework extensions. SharePoint extensions are controls that appear inside a SharePoint page but run locally in the browser. They're the building blocks of pages that appear on a SharePoint site. You can build extensions using modern script development tools and you can deploy your extensions to modern pages in Office 365 tenants. In addition to plain JavaScript projects, you can build extensions alongside common scripting frameworks, such as AngularJS and React. For example, you can use React along with components from Office UI Fabric React to quickly create experiences based on the same components used in Office 365 natively.

SwifterSwift - A handy collection of more than 500 native Swift extensions to boost your productivity

  •    Swift

SwifterSwift is a collection of over 500 native Swift extensions, with handy methods, syntactic sugar, and performance improvements for wide range of primitive data types, UIKit and Cocoa classes –over 500 in 1– for iOS, macOS, tvOS, watchOS and Linux. Add the extensions folder to your Xcode project to use all extensions, or a specific extension.

django-extensions - This is a repository for collecting global custom management extensions for the Django Framework

  •    Python

Django Extensions is a collection of custom extensions for the Django Framework. The easiest way to figure out what Django Extensions are all about is to watch the excellent screencast by Eric Holscher (watch the video on vimeo). In a couple minutes Eric walks you through a half a dozen command extensions. There is also a short screencast on GoDjango to help show you even more.

Extensions for Reactive Extensions (Rxx)

  •    

Rxx is a library of unofficial reactive LINQ extensions supplementary to Microsoft's Reactive Extensions (Rx) for .NET.

accord-net-extensions - Advanced image processing and computer vision algorithms made as fluent extensions and built for portability

  •    CSharp

Accord.Extensions.Imaging.Algorithms package Implements image processing algorithms as .NET array extensions including the Accord.NET algorithms.Accord.Extensions.Math package Fluent matrix extensions. Geometry and graph structures and extensions.

drf-extensions - DRF-extensions is a collection of custom extensions for Django REST Framework

  •    Python

DRF-extensions is a collection of custom extensions for Django REST Framework

Kotlin-Realm-Extensions - Kotlin extensions to simplify Realm API.

  •    Kotlin

Kotlin extensions to simplify Realm API. Simplify your code to its minimum expression with this set of Kotlin extensions for Realm. Forget all boilerplate related with Realm API and perform database operations in one line of code with this lightweight library. Full test coverage.

bulma-extensions - This repository provides a simple access to all of my extensions for Bulma.io

  •    Javascript

This repository provide a simple access to all extensions for Bulma. Each extensions is a git submodule.

sinon-chrome - Testing chrome extensions with Node.js

  •    Javascript

Sinon-chrome is helper tool for unit-testing chromium and Firefox extensions and apps. It mocks all extensions api with sinon stubs that allows you to run tests in Node.js without actual browser. API mocks are generated using official chromium extensions API (Firefox webextensions) schemas that ensures consistency with real API. Actual schemas are taken from Chrome 53 and Firefox 49.

PHP-CPP - Library to build PHP extensions with C++

  •    C++

The PHP-CPP library is a C++ library for developing PHP extensions. It offers a collection of well documented and easy-to-use classes that can be used and extended to build native extensions for PHP. The full documentation can be found on http://www.php-cpp.com. Watch out: PHP 7 only! This library has been updated to work with PHP versions 7.0 and up. If you wish to create extensions for older PHP versions, use the PHP-CPP-LEGACY library instead. The PHP-CPP and PHP-CPP-LEGACY library have (almost) identical API's, so you can easily port extensions for PHP 5.* to PHP 7 and the other way around.

Skavenger

  •    Perl

Skavenger analyzes HTTP traffic logged by various Web proxies (including WebScarab and Burp) for indications of common web vulnerabilities such as XSS, CRLF injection and various kinds of information disclosure.