This extension enhances Burp Suite by adding several UI and functional features, making it more user-friendly.
-
Updated
Dec 17, 2024 - Java
#
montoya-api
Here are 16 public repositories matching this topic...
Burp Suite extension that enhances Burp Active Scan by adding template engine specific SSTI payloads.
-
Updated
Feb 20, 2024 - Java
BurpSuite Extension leveraging new Montoya API to automatically sets payload positions to your inruder tab saving you time during VAPT.
-
Updated
Feb 21, 2026 - Java
This extension integrates popular CAPTCHA solution services into BurpSuite to process different types of CAPTCHAs without manual intervention.
2captcha burpsuite burp-extensions security-testing anti-captcha recaptcha-solver capmonster burpsuite-extension recaptcha-v2-solver recaptcha-v3-solver montoya-api burpsuite-pugin
-
Updated
Feb 16, 2026 - Java
All-in-one Burp Suite attack framework — 16 active scanners, 4 passive analyzers, SQL exploitation engine (OmniMap), AI-powered fuzzing, prerequisite chain automation (Stepper), built-in OOB server (HTTP+DNS). Single JAR, Montoya API.
security owasp penetration-testing web-security vulnerability-scanner ai-security burp-suite montoya-api burp-extension
-
Updated
Jun 11, 2026 - Java
REST API automation for Burp Suite Community Edition. Drop-in Java extension exposing send/repeat/history endpoints over a local HTTP API.
-
Updated
Jun 5, 2026 - Java
Enables transparent use of Excel files in Burp Suite
-
Updated
Mar 19, 2024 - Java
Proof-of-testing coverage tracker for Burp Suite — automatically captures traffic from all tools, classifies testing depth per endpoint, and highlights untested gaps in your scope.
coverage penetration-testing bug-bounty web-security appsec burp-extensions pentest-tool pentest-tools penetration-testing-tools burp-suite montoya-api burp-extension
-
Updated
May 22, 2026 - Java
Autonomous AI penetration testing agent for Burp Suite. Agentic pentesting with local/cloud LLMs (Ollama, Gemini, DeepSeek, OpenRouter) via Montoya API.
-
Updated
Mar 12, 2026 - Java
🛡️ Burp Suite extension for automated access control bypass, path traversal & Web Cache Deception testing. Header spoofing, URL encoding, cache deception pipelines – all in one tool.
penetration-testing web-security fuzzer bypass access-control web-security-research security-testing bypass-waf path-traversal burp-suite web-cache-deception montoya-api header-bypasser web-security-scanner burp-extension bypass-firewal
-
Updated
Jun 12, 2026 - Java
Burp Suite extension implementing OWASP API Security Top 10 (2023) coverage on the Montoya API — active + passive scan checks with optional Burp AI integration
security-scanner vulnerability-scanner dast api-security burp-suite montoya-api burp-extension burp-suite-extension owasp-api-top-10
-
Updated
Jun 15, 2026 - Java
This BurpSuite extension tests ESPv2 malicious X-HTTP-Method-Override header value to bypass JWT authentication in specific cases.
-
Updated
Jun 16, 2023 - Kotlin
This Burp Suite extension monitors a provided JWT token for its expiration and replaces any already present JWT token in outgoing requests with the provided one
-
Updated
Aug 14, 2025 - Kotlin
Burp Suite extension that drives a content-discovery / fuzzing crawler (gocrawlerd) from inside Burp — results stream back over SSE as real Burp HTTP messages.
-
Updated
May 12, 2026 - Java
Burp Suite Professional extension with embedded Discord bot for real-time scan control, findings notifications, and workflow automation
-
Updated
Jun 2, 2026 - Java
Analyze JAR bytecode and store results in SQLite for security audits and code review automation
security bytecode static-analysis owasp penetration-testing java-bytecode web-security call-graph vulnerability-scanner code-audit ai-security burp-suite java-asm montoya-api burp-extension
-
Updated
Jun 16, 2026 - Java
Improve this page
Add a description, image, and links to the montoya-api topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the montoya-api topic, visit your repo's landing page and select "manage topics."