Brida: Brida is a Burp Suite Extension that, working as a bridge between Burp Suite and Frida, lets you use and manipulate applications’ own methods while tampering the traffic exchanged between the applications and their back-end services/servers. It supports all platforms supported by Frida (Windows, macOS, Linux, iOS, Android, and QNX). Published on GitHub.
Java Deserialization Scanner: Java Deserialization Scanner is a Burp Suite plugin aimed at detect and exploit Java deserialization vulnerabilities, composed by Passive and Active modules for Burp Suite Scanner and manual detection and exploitation tools. Published on GitHub.
ghidra2frida: ghidra2frida is a Ghidra Extension that, working as a bridge between Ghidra and Frida, lets you create powerful Ghidra scripts that take advantage of Frida’s dynamic analysis engine to improve Ghidra statical analysis features. It supports all platforms supported by Frida (Windows, macOS, Linux, iOS, Android, and QNX). Published on GitHub.
LetMeHID: LetMeHID is a small tool that generates Windows HID payloads to obtain bind or reverse access using Raspberry PI0 and P4wnP1 A.L.O.A. Published on GitHub.
HandyCollaborator: Handy Collaborator is a Burp Suite Extension that lets you use the Collaborator tool during manual testing in a comfortable way. Published on GitHub.
ysoserial fork: A fork of the official great ysoserial project with some improvements I added to create payloads for the Burp Suite plugin Java Deserialization Scanner and more generally to speed-up and improve the detection and the exploitation of Java serialization issues with ysoserial. Published on GitHub.
BurpJDSer-ng-edited: A Burp Suite plugin that deserialize Serialized Java objects and convert them in an XML format (using XStream library). Based on BurpJDSer-ng of omercnet and on BurpJDSer of khai-tran, with some fixes and the addiction of some code to unpack responses, if packed with gzip. Published on GitHub.