added 'TOP 12 Burp extensions'

- signed-off-by: trimstray <trimstray@gmail.com>

README.md

@@ -651,6 +651,23 @@ Linux Security Expert</b></a> - trainings, howtos, checklists, security tools an
 | **`uMatrix`** | Point & click to forbid/allow any class of requests made by your browser. |
 | **`uBlock Origin`** | An efficient blocker: easy on memory and CPU footprint. |
 
+###### TOP 12 Burp extensions
+
+| <b><u>Extension name</u></b> | <b><u>Description</u></b> |
+| :---         | :---         |
+| **`Autorize`** | Automatically detects authorization enforcement. |
+| **`Reflection`** | An efficient blocker: easy on memory and CPU footprint. |
+| **`Logger++`** | Logs requests and responses for all Burp tools in a sortable table. |
+| **`Bypass WAF`** | Adds headers useful for bypassing some WAF devices. |
+| **`JSON Beautifier`** | Beautifies JSON content in the HTTP message viewer. |
+| **`JSON Web Tokens`** | Enables Burp to decode and manipulate JSON web tokens. |
+| **`CSP Auditor`** | Displays CSP headers for responses, and passively reports CSP weaknesses. |
+| **`CSP-Bypass`** | Passively scans for CSP headers that contain known bypasses or other potential weaknesses. |
+| **`Hackvertor`** | Converts data using a tag-based configuration to apply various encoding. |
+| **`Active Scan++`** | Extends Burp's active and passive scanning capabilities. |
+| **`HTML5 Auditor`** | Scans for usage of risky HTML5 features. |
+| **`Software Vulnerability Scanner`** | Software vulnerability scanner based on Vulners.com audit API. |
+
 #### One-liners
 
 ##### Table of Contents