laconicwolf/burp-extensions laconicwolf/burp-extensions

  • Stars
    star
    138
  • Rank 263,009 (Top 6 %)
  • Language
    Python
  • Created over 6 years ago
  • Updated over 5 years ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
laconicwolf/burp-extensions
github

laconicwolf

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

A collection of scripts to extend Burp Suite

Burp Extensions

A collection of scripts to extend Burp Suite. Most are just sample scripts that interact with Burp in a particular way, mainly to demonstrate how to interact with Burp. The code is commented well enough (hopefully!) to follow, or I have written a blog post that explains the code in detail.

Step-by-step tutorials to write Python extensions:

https://laconicwolf.com/2019/03/09/burp-extension-python-tutorial-generate-a-forced-browsing-wordlist/ https://laconicwolf.com/2019/02/07/burp-extension-python-tutorial-encode-decode-hash/ https://laconicwolf.com/2018/04/13/burp-extension-python-tutorial/

Extensions

InjectMate.py

Multi-tabbed extension that helps generate payloads for various purposes (XSS, SQLi, Header injection, and more). Includes intergration with Collaborator to discover OOB and blind issues. Allows for payload customization and has multiple options for encoding and that could help with WAF bypass. XSS payloads that get generated may not all be valid (some event handlers may not work with the specific tag). SQLi payloads are taken from SQLMap and sorted by DBMS and technique (my implementation of this may not be perfect, and it is probably just better to just run SQLMap). Of course, suggestions are welcome.

GenerateParameterWordlist.py

Extracts the parameters from URLs in scope or from a selected host. Just right click on the hosts pane in the sitemap and click 'Generate parameter wordlist' for either selected items or all hosts in scope. The output will be copied to the clipboard and will appear in the extender tab, where you can set configure the extension to output to the system console, save to a file, or show in the UI.

GenerateForcedBrowseWordlist.py

Extracts the filenames from URLs in scope or from a selected host. Just right click on the hosts pane in the sitemap and click 'Generate forced browsing wordlist' for either selected items or all hosts in scope. The output will appear in the extender tab, where you can set configure the extension to output to the system console, save to a file, or show in the UI.

ExampleRepeater.py

Like repeater, only without any of the features, bug checking, or elegance. A simple example that creates a tab with a split-panel GUI, where the top pane can be populated (By right-clicking and 'Send to ...' or just typing it) with an HTTP request. It implements a button, that when clicked, sends the HTTP request and writes the response to the bottom pane.

RequestAsPython-PowerShell.py

Once again, extensions already exist for this, but is an example of a tab with a split panel GUI. Top pane is for an HTTP request, and the bottom pane contains a button and three text fields. Click the button, and the request gets transformed to its equivalent in Python requests, Python urllib2, and PowerShell Invoke-WebRequest. Not all methods and use cases were tested, but seems to work okay.

EncodeDecodeHash.py

Performs encoding, decoding, and hashing similar to ZAP's encode/decode/hash tool. The extension encodeDecodeHash.py is only here for training purposes, as it is used in a tutorial. EncodeDecodeHash.py has some GUI improvements (scroll panes, line wrap) and performance improvements (multithreading), so if you are going to use it, be sure to use EncodeDecodeHash and not encodeDecodeHash.

More Repositories

1

Nmap-Scan-to-CSV

Converts Nmap XML output to csv file, and other useful functions
Python
216
star
2

Password-Scripts

A collection of scripts that help with different aspects of password cracking, such as wordlist generation, mask analysis, and positional character frequency.
Python
102
star
3

Masscan-to-CSV

Converts the Masscan XML output option (-oX) to a csv format.
Python
56
star
4

Android-App-Testing

Scripts to help me test Android apps
Python
53
star
5

Burp-API-Scripts

A collection of scripts used to interact with the Burp Rest API
Python
51
star
6

random-python

Various Python scripts that have come in handy but aren't important enough to get their own repository
Python
22
star
7

crypto-tools

A collection of tools that deal with crypto and cryptanalysis. For educational purposes only. These tools are likely not a good substitute for real cryptography.
Python
22
star
8

Dirscover

A multi-processed, multi-threaded scanner to discover web directories on multiple URLs.
Python
21
star
9

HTTP-Header-Fuzzer

A multithreaded Python3 program that fuzzes HTTP headers and values and outputs the results to a CSV file.
Python
21
star
10

cors-scanner

A multi-threaded scanner that helps identify CORS flaws/misconfigurations
Python
18
star
11

subdomain-searcher

Accepts a domain name and queries multiple sources to return subdomains. Includes option to scan the returned subdomains to check connectivity.
Python
14
star
12

ironpython-ldap

IronPython scripts for LDAP/ActiveDirectory enumeration
Python
10
star
13

powershell-enumeration

PowerShell script containing multiple cmdlets used for enumeration
PowerShell
9
star
14

random-powershell

Various PowerShell scripts that have come in handy but aren't important enough for their own repository
PowerShell
7
star
15

SiteKick

A multi-purpose web enumeration tool
Python
6
star
16

check-byte-distribution

A program to check byte distribution for a given set of data.
Python
4
star
17

async-tools

Security tools written using Python asyncio
Python
4
star
18

Get-AutoFillCredentials

Initializes a hidden Internet Explorer browser and browses to a list of specified URLs. For each URL, the DOM will be scraped in an attempt to find auto-filled credentials.
PowerShell
4
star
19

PowerShell-BrowserData-Parsers

A collection of cmdlets used to enumerate browser data.
PowerShell
3
star
20

cryptopals-challenges

A repository containing my solutions to the cryptopals challenges (https://cryptopals.com).
Python
2
star
21

FTP-Tools

A collection of scripts for interacting with FTP using Python3.
Python
2
star
22

Python-AWS

A collection of scripts to create and/or interact with AWS resources using Python3
Python
1
star