Screenshots
Example Usage
You: Connect to Burp MCP at localhost:9876 and scan the proxy history for IDOR vulnerabilities
AI: [Uses proxy_http_history to pull traffic]
[Identifies endpoints with numeric IDs]
[Sends http1_request with ID+1, ID-1 payloads]
[Compares responses for different user data]
[Creates issue_create for confirmed IDOR]
See also
public-skills-builder
Free
Generate Claude Code bug bounty skills from public HackerOne reports and GitHub writeups — 18 vuln c…
Retire.js
Open Source
Detects the use of JavaScript libraries with known vulnerabilities. Available as a CLI tool, browser…
Advanced-WAF-WAFinity
Free
An Advanced Web Application Firewall that protects against threats like SQL injection and XSS by fil…
ffuf
Open Source
Kali
Fast web fuzzer written in Go. Supports directory discovery, parameter fuzzing, virtual host discove…
aaWAF
Open Source
…
Joomscan
Open Source
Kali
OWASP Joomla vulnerability scanner. Detects Joomla version, components, modules, and templates with …