Skip to content

salcho/Burp-Extensions

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
GFTampering
GFTampering
 
 
SWFReplace
SWFReplace
 
 
WSDL Disector
WSDL Disector
 
 
README.md
README.md
 
 

Repository files navigation

GFTampering

  • Quick shortcut to check whether a glassfish server is vulnerable to CVE-2011-1511
  • It'll issue a TRACE to the "create new user" object, it doesn't create the new user.
  • To port: create the user!
  • Usage: Run using a custom insertion point that includes the verb and URL portions of the request

SWFReplace

  • Replace the original swf within a server's response with a custom one
  • The custom swf file inherits the session and may modify events, actions and controls.
  • Usage: Browse original SWF -> SWFReplace it through the context menu -> Choose new SWF -> Run -> Show response in browser

WSDL Mini-disector

  • Mark any incoming messages that may indicate to be a WSDL
  • Enumerate the EndPoint's services, portTypes, bindings and messages
  • To port: create XML megatags and issue requests.
  • Usage: Just load the module and output where convenient

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

2 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages