Research By: Dikla Barda, Roman Zaikin and Oded Vanunu According to sources, WhatsApp, the Facebook-owned messaging application has over 1.5 billion users in over 180 countries. The average user checks WhatsApp more than 23 times per day. And, the number…

In order to bypass IP based blocking, we at Rhino Security Labs created a Burp Suite extension that uses AWS API Gateway to change your IP on every request.

Contribute to PortSwigger/http-request-smuggler development by creating an account on GitHub.

Extension for Burp Suite which uses AWS API Gateway to rotate your IP on every request. - RhinoSecurityLabs/IPRotate_Burp_Extension

Broken Link Hijacking Burp Extension. Contribute to arbazkiraak/BurpBLH development by creating an account on GitHub.

Pulse SSL VPN Arbitrary File Read burp extension. Contribute to antichown/vpn-ssl-pulse development by creating an account on GitHub.

Interactive cross-site scripting (XSS) cheat sheet for 2024, brought to you by PortSwigger. Actively maintained, and regularly updated with new vectors.

Burp Suite extension to discover assets from HTTP response. - redhuntlabs/BurpSuite-Asset_Discover

We have big plans for Burp Suite during 2020, aimed at improving its value to professional testers, software development teams, and businesses with web assets to protect. Here, we’re sharing some key

As classic client-side vulnerabilities like XSS and CSRF get patched, CSP'd and SameSite'd into oblivion, niche attack techniques like DOM Clobbering are becoming ever more relevant. Michał Bentkowski

Interactive cross-site scripting (XSS) cheat sheet for 2024, brought to you by PortSwigger. Actively maintained, and regularly updated with new vectors.