Burp Extensions

• Extension load error code

  os win 7 java.lang.ExceptionInInitializerError at org.python.util.PythonInterpreter.<init>(PythonInterpreter.java:100) at org.python.util.PythonInterpreter.<init>(PythonInterpreter.java:94) at org.python.util.PythonInterpreter.<init>(PythonInterpreter.java:71) at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method) at sun.reflect.NativeConstructor...

  2 Agent Answers    2 Community Answers

  Nov 27, 2019 09:12AM UTC
• Extensions are not loading with Burp defaults

  Hi Team, I always use Burp defaults option for configurations while opening/creating projects. I have a few extensions installed such as Retire.js, TokenJar, Active Scan++, etc. What my issue is that all the extensions are getting uninstalled except Active Scan++ and Auth Matrix. I need to reinstall other extensions each time when I open existing or creating new projects. In the case of Aut...

  3 Agent Answers    2 Community Answers

  Nov 25, 2019 05:56AM UTC
• XML tab "Reparse" Programmatically

  Hi, I would like to know how the "Reparse" button in the request/response "XML" tab reformats XML documents programmatically via Java. Specifically, I am wondering what library(s) are used for this. I am asking for the purpose of incorporating it into current and future Burp Extensions that handle XML documents. While manually reparsing documents in the XML tab is acceptable...

  2 Agent Answers    2 Community Answers

  Nov 24, 2019 08:09PM UTC
• Burp Extension for Intruder Payload with multiple payload lists

  Hi, I am working on creating a extension for burp suite where a user can choose from a list of payload lists [one list for angular payloads, one list for react payload] according to the framework of the application he is testing. But I am only able to create one payload list per extension using this code https://github.com/PortSwigger/example-intruder-payloads Can you please let me know i...

  1 Agent Answer    0 Community Answer

  Nov 11, 2019 06:11AM UTC
• Scan Configuration

  I am building an extension that calls doActiveScan and doPassiveScan. Is there a way to specify the scanner configuration. Currently tasks are created and there is a default scanner configuration used named Current auditing configuration. Is there a way to specify the configuration to be used by the scanner. I have tried exporting a scanner configuration and calling loadConfigFromJson but every ti...

  2 Agent Answers    1 Community Answer

  Oct 18, 2019 01:59PM UTC
• Send to decoder programmaticaly from extensions

  There are methods in IBurpExtenderCallbacks for sending data to - repeater, - intruder, - comparer, and - spider. Why isn't there one for decoder? When writing a custom message editor with a custom editor widget, it'd be better to be able to offer sending a selected chunk to the built-in decoder instead of reimplementing it, poorly. Just like there's already void sendTo...

  2 Agent Answers    2 Community Answers

  Oct 18, 2019 09:32AM UTC
• Burp Suite Automation

  Hi All We are trying to automate to test various vulnerabilities like xpath injection,sql injection, Cross-site scripting etc. We have referred the following link https://www.we45.com/blog/automating-burp-with-jenkins We have tried through burp-rest-api as well as carbonator The issue is that we are not able to select the individual scan types (xpath injection,sql injection, Cross-sit...

  3 Agent Answers    2 Community Answers

  Oct 14, 2019 01:09PM UTC
• Old version of AutoRepeater in the BApp store

  Hello, extension AutoRepeater is available in the BApp store as version 1.0 from April, 4th 2018. The latest commit from the original repository https://github.com/nccgroup/AutoRepeater was on July 27th, 2019. Any plans to sync the BApp store with the original repository? Plenty of features are currently missing, including the ability to colorize logs. Nicolas

  1 Agent Answer    0 Community Answer

  Oct 05, 2019 01:29PM UTC
• Trouble integrating requests python library and jython

  Im currently building a burp extension using Jython. At one point I basically get URLs from the proxy Tab and make an additional request with that url+someEndpoint with the Python Requests library. The extension works fine if I use the URL that "comes" from proxy tab, something like this. requests.get(str(requestInfo.getUrl())) But when I, for example, want to get the "sour...

  1 Agent Answer    0 Community Answer

  Oct 02, 2019 01:29PM UTC
• Add Custom Headers stopped to work.

  Hi Guys! Any changes in Add Custom Headers extension? It stopped to work on Linux/Windows/1.7 and 2.X Burp versions. (:

  2 Agent Answers    2 Community Answers

  Sep 30, 2019 10:37AM UTC