A simple Burp Suite extension to extract datas from source code

Last update: Dec 31, 2022

Overview

DataExtractor

A simple Burp Suite extension to extract datas from source code.

Features

in scope parsing
file extensions to ignore
files exclusion based on regexp
multi tabs for multiple purpose
datas extraction based on regexp
datas exclusion based on regexp
datas export

Install

First of all, ensure you have JPython loaded and setup before installing.

clone this repository
in the Extender tab, click the button "Add"
set "Extension type" to "Python"
browse to the cloned folder and select DataExtractor.py as the "Extension file"

The extension should load and is now ready to perform a passive scan.

Screenshots

You might also like...

log4j burp scanner

log4jscanner log4j burp插件特点如下： 0x01 基于Cookie字段、XFF头字段、UA头字段发送payload 0x02 基于域名的唯一性，将host带入dnslog中插件主要识别五种形式： 1.get请求，a=1&b=2&c=3 2.post请求，a=1&b=2&c=

1 Jun 30, 2022

log4j2 passive burp rce scanning tool get post cookie full parameter recognition

log4j2_burp_scan 自用脚本log4j2 被动 burp rce扫描工具 get post cookie 全参数识别，在ceye.io api速率限制下，最大线程扫描每一个参数，记录过滤已检测地址，重复地址 token替换为你自己的http://ceye.io/ token 和域名地址

5 Dec 10, 2021

PortSwigger Burp Plugin for the Log4j (CVE-2021-44228)

yLog4j This is Y-Sec's @PortSwigger Burp Plugin for the Log4j CVE-2021-44228 vulnerability. The focus of yLog4j is to support mass-scanning of the Log

1 Jan 31, 2022

This a simple tool XSS Detection Suite for CTFs games

2 Nov 24, 2021

A DOM-based G-Suite password sprayer and user enumerator

1 Apr 7, 2022

SCodeScanner stands for Source Code scanner where the user can scans the source code for finding the Critical Vulnerabilities.

The SCodeScanner stands for Source Code Scanner, where you can scan your source code files like PHP and get identify the vulnerabilities inside it. The tool can use by Pentester, Developer to quickly identify the weakness.

136 Dec 13, 2022

A tool to extract the IdP cert from vCenter backups and log in as Administrator

vCenter SAML Login Tool A tool to extract the Identity Provider (IdP) cert from vCenter backups and log in as Administrator Background Commonly, durin

343 Dec 31, 2022

Python library to remotely extract credentials on a set of hosts.

1.5k Dec 31, 2022

This is python script that will extract the functions call in all used DLL in an executable and then provide a mapping of those functions to the attack classes defined and curated malapi.io.

F2Amapper This is python script that will extract the functions call in all used DLL in an executable and then provide a mapping of those functions to

3 Sep 3, 2022

Comments

Feature request

Hi I really love this tool. But is it possible to add options like "Send to DataExtrator" so I can spicificly can resend old endpoints that I dont want to revisit.

opened by iamRjarpan 2

Releases(v1.1.0)

v1.1.0(Dec 2, 2022)

Source code(tar.gz)
Source code(zip)

Owner

Gwendal Le Coguic

Bug hunter, tool maker.

GitHub Repository

Hammer-DDos - Hammer DDos With Python

Hammer-DDos $ apt update $ apt upgrade $ apt install python $ apt install git $

1 Jan 24, 2022

Tool-X is a kali linux hacking Tool installer.

Tool-X is a kali linux hacking Tool installer. Tool-X developed for termux and other Linux based systems. using Tool-X you can install almost 370+ hacking tools in termux app and other linux based di

4.2k May 29, 2022

Vulnerability Exploitation Code Collection Repository

Introduction expbox is an exploit code collection repository List CVE-2021-41349 Exchange XSS PoC = Exchange 2013 update 23 = Exchange 2016 update 2

263 Feb 14, 2022

Buffer Overflow para SLmail5.5 32 bits

SLmail5.5-Exploit-BoF Buffer Overflow para SLmail5.5 32 bits con un par de utilidades para que puedas hacer el tuyo REQUISITOS PARA QUE FUNCIONE: Desa

15 Jul 30, 2022

KeyLogger

By-Emirhan KeyLogger Hangi Sistemlerde Çalışır? | On Which Systems Does It Work? KALİ LİNUX UBUNTU PARDUS MİNT TERMUX ARCH YÜKLEME & ÇALIŞTIRMA KOMUTL

2 Feb 24, 2022

Fat-Stealer is a stealer that allows you to grab the Discord token from a user and open a backdoor in his machine.

21 Jan 01, 2023

Strapi Framework Vulnerable to Remote Code Execution

CVE-2019-19609 Strapi Framework Vulnerable to Remote Code Execution well, I didnt found any exploit for CVE-2019-19609 so I wrote one. :/ Usage pytho

7 Mar 08, 2022

compact and speedy hash cracker for md5, sha1, and sha256 hashes

hash-cracker hash cracker is a multi-functional and compact...hash cracking tool...that supports dictionary attacks against three kinds of hashes: md5

3 Feb 22, 2022

Auto Tor Ip Changer

AutoTor Auto Tor Ip Changer for Linux! git clone https://github.com/Arest7/AutoTor cd AutoTor pip install -r requirements.txt python3 AutoTor.py follo

3 Jan 23, 2022

The next level Python obfuscator, nearly impossible to deobfuscate.

🐸 Kramer 🐸 Kramer is a next level obfuscation tool written in Python3 allowing you to obfuscate your Python3 code easily and securely. It uses Berse

114 Dec 26, 2022

A toolkit for web reconnaissance, it's fast and easy to use.

A toolkit for web reconnaissance, it's fast and easy to use. File Structure httpsuite/ main.py init.py db/ db.py init.py subdomains_db directories_db

22 Jul 22, 2022

Python script that sends CVE-2021-44228 log4j payload requests to url list

scan4log4j Python script that sends CVE-2021-44228 log4j payload requests to url list [VERY BETA] using Supply your url list to urls.txt Put your payl

5 Nov 09, 2022

Midas ELF64 Injector is a tool that will help you inject a C program from source code into an ELF64 binary.

Midas ELF64 Injector Description Midas ELF64 Injector is a tool that will help you inject a C program from source code into an ELF64 binary. All you n

20 Dec 24, 2022

Using python 3 and Flask an MVC system where the AES 128 CBC and Trivium algorithms

This project was developed using python 3 and Flask, it is an MVC system where the AES 128 CBC and Trivium algorithms can be tested through a communication between the computer and a device such as a

1 Dec 26, 2021

RapiDAST provides a framework for continuous, proactive and fully automated dynamic scanning against web apps/API.

RapiDAST RapiDAST provides a framework for continuous, proactive and fully automated dynamic scanning against web apps/API. Its core engine is OWASP Z

17 Nov 11, 2022

Get important strings inside [Info.plist] & and Binary file also all output of result it will be saved in [app_binary].json , [app_plist_file].json file

12 Sep 28, 2022

A simple Burp Suite extension to extract datas from source code

Related tags

Overview

DataExtractor

Features

Install

Screenshots

You might also like...

log4j burp scanner

log4j2 passive burp rce scanning tool get post cookie full parameter recognition

PortSwigger Burp Plugin for the Log4j (CVE-2021-44228)

This a simple tool XSS Detection Suite for CTFs games

A DOM-based G-Suite password sprayer and user enumerator

SCodeScanner stands for Source Code scanner where the user can scans the source code for finding the Critical Vulnerabilities.

A tool to extract the IdP cert from vCenter backups and log in as Administrator

Python library to remotely extract credentials on a set of hosts.

This is python script that will extract the functions call in all used DLL in an executable and then provide a mapping of those functions to the attack classes defined and curated malapi.io.

Comments

Feature request

Releases(v1.1.0)

v1.1.0(Dec 2, 2022)

Owner

Gwendal Le Coguic

Hammer-DDos - Hammer DDos With Python

Tool-X is a kali linux hacking Tool installer.

Vulnerability Exploitation Code Collection Repository

Buffer Overflow para SLmail5.5 32 bits

KeyLogger

Fat-Stealer is a stealer that allows you to grab the Discord token from a user and open a backdoor in his machine.

Strapi Framework Vulnerable to Remote Code Execution

compact and speedy hash cracker for md5, sha1, and sha256 hashes

Auto Tor Ip Changer

The next level Python obfuscator, nearly impossible to deobfuscate.

A toolkit for web reconnaissance, it's fast and easy to use.

Python script that sends CVE-2021-44228 log4j payload requests to url list

Midas ELF64 Injector is a tool that will help you inject a C program from source code into an ELF64 binary.

Using python 3 and Flask an MVC system where the AES 128 CBC and Trivium algorithms

RapiDAST provides a framework for continuous, proactive and fully automated dynamic scanning against web apps/API.

Get important strings inside [Info.plist] & and Binary file also all output of result it will be saved in [app_binary].json , [app_plist_file].json file

log4j2 passive burp rce scanning tool get post cookie full parameter recognition

Script Crack Facebook Premium 🚶‍♂

PyFUD - Fully Undetectable payload generator for metasploit

Spray365 is a password spraying tool that identifies valid credentials for Microsoft accounts (Office 365 / Azure AD).