private boolean checkStringInRequest(IHttpRequestResponse messageInfo) { switch (this.matchRelationship) { case "Matches": return new String(messageInfo.getRequest()).contains(this.matchCondition); case "Does Not Match": return !(new String(messageInfo.getRequest()).contains(this.matchCondition)); case "Matches Regex": return Pattern.compile(this.matchCondition).matcher(new String(messageInfo.getRequest())).find(); default: return !(Pattern.compile(this.matchCondition).matcher(new String(messageInfo.getRequest())).find()); } }
private static ParamInsertionPoint getInsertionPoint(IHttpRequestResponse baseRequestResponse, byte type, String payload, String attackID) { switch(type) { case IParameter.PARAM_JSON: return new JsonParamNameInsertionPoint(baseRequestResponse.getRequest(), "guesser", payload, type, attackID); case Utilities.PARAM_HEADER: return new HeaderNameInsertionPoint(baseRequestResponse.getRequest(), "guesser", payload, type, attackID); default: return new ParamNameInsertionPoint(baseRequestResponse.getRequest(), "guesser", payload, type, attackID); } }
private List<int[]> buildRequestHighlights(String payload, IHttpRequestResponse sentRequestResponse) { List<int[]> requestHighlights = new ArrayList<>(); int startOfPayload = helpers.indexOf(sentRequestResponse.getRequest(), helpers.stringToBytes(payload), true, 0, sentRequestResponse.getRequest().length); if (startOfPayload != -1) { requestHighlights.add(new int[]{startOfPayload, startOfPayload + payload.length()}); } return requestHighlights; }
/** * Convert SSOProtocol to a String. * @return Token + Protocol + md5(Request) */ @Override public String toString(){ return token+" "+protocol+" md5(Request)="+DigestUtils.md5(message.getRequest()); }
private boolean checkRequestBody(IHttpRequestResponse messageInfo) { IRequestInfo analyzedRequest = BurpExtender.getHelpers().analyzeRequest(messageInfo); byte[] request = messageInfo.getRequest(); String bodyString = new String( Arrays.copyOfRange(request, analyzedRequest.getBodyOffset(), request.length)); switch (this.matchRelationship) { case ("Matches"): return bodyString.matches(this.matchCondition); default: return !bodyString.matches(this.matchCondition); } }
@Override public void processHttpMessage(int toolFlag , boolean isRequest, IHttpRequestResponse requestResponse) { if (toolFlag == IBurpExtenderCallbacks.TOOL_PROXY) { if (isRequest) { final byte[] requestBytes = requestResponse.getRequest(); if(samlTabController.isEnabled(requestBytes, isRequest)){ highlightRequestResponse(requestResponse); } } } }
@Override public void actionPerformed(ActionEvent e) { IHttpRequestResponse req = myburp.context.getSelectedMessages()[0]; byte[] request = req.getRequest(); int[] selectedIndex = myburp.context.getSelectionBounds(); String action = e.getActionCommand(); byte[] newRequest = GetNewRequest(request, selectedIndex, action); req.setRequest(newRequest); }
@Override public void actionPerformed(ActionEvent e) { int[] selectedIndex = myburp.context.getSelectionBounds(); IHttpRequestResponse req = myburp.context.getSelectedMessages()[0]; byte[] request = req.getRequest(); String action = e.getActionCommand(); byte[] newRequest = GetNewRequest(request, selectedIndex, action); req.setRequest(newRequest); }
@Override public void actionPerformed(ActionEvent e) { IHttpRequestResponse req = myburp.context.getSelectedMessages()[0]; byte[] request = req.getRequest(); int[] selectedIndex = myburp.context.getSelectionBounds(); String action = e.getActionCommand(); byte[] newRequest = GetNewRequest(request, selectedIndex, action); req.setRequest(newRequest); }
@Override public void actionPerformed(ActionEvent e) { IHttpRequestResponse req = myburp.context.getSelectedMessages()[0]; byte[] request = req.getRequest(); int[] selectedIndex = myburp.context.getSelectionBounds(); String action = e.getActionCommand(); byte[] newRequest = GetNewRequest(request, selectedIndex, action); req.setRequest(newRequest); }
@Override public void actionPerformed(ActionEvent e) { IHttpRequestResponse req = myburp.context.getSelectedMessages()[0]; byte[] request = req.getRequest(); int[] selectedIndex = myburp.context.getSelectionBounds(); String action = e.getActionCommand(); byte[] newRequest = GetNewRequest(request, selectedIndex, action); req.setRequest(newRequest); }
@Override public void actionPerformed(ActionEvent e) { IHttpRequestResponse req = myburp.context.getSelectedMessages()[0]; byte[] request = req.getRequest(); int[] selectedIndex = myburp.context.getSelectionBounds(); String action = e.getActionCommand(); byte[] newRequest = GetNewRequest(request, selectedIndex, action); req.setRequest(newRequest); }
private URL hrrToUrl(IHttpRequestResponse baseRequestResponse) { IRequestInfo ri = helpers.analyzeRequest(baseRequestResponse.getHttpService(), baseRequestResponse.getRequest()); return ri.getUrl(); }
@Override public void actionPerformed(ActionEvent e) { IHttpRequestResponse req = myburp.context.getSelectedMessages()[0]; byte[] request = req.getRequest(); int[] selectedIndex = myburp.context.getSelectionBounds(); String action = e.getActionCommand(); byte[] newRequest = GetNewRequest(request, selectedIndex, action); req.setRequest(newRequest); }
@Override public void actionPerformed(ActionEvent e) { IHttpRequestResponse req = myburp.context.getSelectedMessages()[0]; byte[] request = req.getRequest(); int[] selectedIndex = myburp.context.getSelectionBounds(); String action = e.getActionCommand(); byte[] newRequest = GetNewRequest(request, selectedIndex, action); req.setRequest(newRequest); }
private static URL getURL(IHttpRequestResponse request) { IHttpService service = request.getHttpService(); URL url; try { url = new URL(service.getProtocol(), service.getHost(), service.getPort(), getPathFromRequest(request.getRequest())); } catch (java.net.MalformedURLException e) { url = null; } return url; }
public static URL getURL(IHttpRequestResponse request) { IHttpService service = request.getHttpService(); URL url; try { url = new URL(service.getProtocol(), service.getHost(), service.getPort(), getPathFromRequest(request.getRequest())); } catch (java.net.MalformedURLException e) { url = null; } return url; }
public static URL getURL(IHttpRequestResponse request) { IHttpService service = request.getHttpService(); URL url; try { url = new URL(service.getProtocol(), service.getHost(), service.getPort(), getPathFromRequest(request.getRequest())); } catch (java.net.MalformedURLException e) { url = null; } return url; }
private void sendToScanner(IBurpExtenderCallbacks callbacks, String url) { IHttpRequestResponse[] responses = callbacks.getSiteMap(url); for (IHttpRequestResponse response : responses) { IHttpService service = response.getHttpService(); boolean useHttps = service.getProtocol().equalsIgnoreCase("https"); callbacks.doActiveScan(service.getHost(), service.getPort(), useHttps, response.getRequest()); } }
public void loadRequest(IHttpRequestResponse request){ this.requestResponse = request; IRequestInfo req = burpCallback.getHelpers().analyzeRequest(request); loadData(request.getRequest(), req.getParameters(), req.getHeaders()); }