Verdict:If you seek an alternative to Burp Suite, that is easy to set up, ideal for non-technical employees of your business, and facilitates automated proof-based scanning, then Invicti is for you. Its accurate and fast detection of vulnerabilities and advanced web crawling abilities make it ...
This course will help you get acquainted with Burp Suite. Burp Suite is the most important tool for Web Penetration Testing! Discover vulnerabilities and develop attacks such as Brute-Forcing, Cross-Site Scripting, SQLinjection, etc. This course focuses on Burp Suite. A free version is available...
CSP Evaluator tool to check if content security policy is in place to mitigate XSS attacks. Example is if the base-uri is missing, this vulnerability will allow attacker to use the alternative exploit method described at Upgrade stored self-XSS....
Burp Suite was developed for lazy hackers unwilling to use programming languages for implementation of such tasks. The tool provides several ways to automate your actions: macros; third-party Stepper extension; and Turbo Intruder extension developed by the creators of Burp Suite. ...
Jython-Burp-API is an ISC Licensed library, written in Jython, Java and Python. Jython-Burp-API exposes a Jython interface to the popular Burp Suite web security testing tool, as an alternative toBubyfor those testers who prefer Python over Ruby. ...
OAUTHScan is a Burp Suite Extension written in Java with the aim to provide some automatic security checks, which could be useful during penetration testing on applications implementing OAUTHv2 and OpenID standards.The plugin looks for various OAUTHv2/OpenID vulnerabilities and common misconfigurations ...
Integris Security Carbonator - The Burp Suite Pro extension that automates scope, spider & scan from the command line. Carbonator helps automate the vulnerability scanning of web applications. Either 1 or 100 web applications can be scanned by issuing a