- https://github.com/snoopysecurity/awesome-burp-extensions //awesome系列之burp拓展
- https://github.com/alphaSeclab/awesome-burp-suite //Awesome Burp Suite Resources. 400+ open source Burp plugins, 500+ posts and videos.
- https://github.com/d3vilbug/HackBar //hackbar
- https://github.com/bit4woo/knife //burp增强右键菜单
- https://github.com/c0ny1/jsEncrypter //一个用于加密传输爆破的Burp Suite插件
- https://github.com/nccgroup/BurpSuiteHTTPSmuggler //使用几种技巧绕过WAF
- https://github.com/nccgroup/argumentinjectionhammer //Burp插件.识别参数注入漏洞
- https://github.com/modzero/interestingFileScanner //增强敏感文件扫描
- https://github.com/c0ny1/chunked-coding-converter //本插件主要用于分块传输绕WAF
- https://github.com/ztosec/secscan-authcheck //java.越权漏洞检测,支持web界面配置。Github:portswigger/authz
- https://github.com/m4ll0k/BurpSuite-Secret_Finder //在http请求中扫描 api key/tokens
- https://github.com/TheKingOfDuck/burpFakeIP //PY.IP修改伪造