Burp Extensions

Make a new post

  • Problem in using SQLiPy extender

    Hi, I am getting Importerror while starting SQLiPy.py api. Error thrown is no module named burp. I have loaded jython stand alone jar file. Other python extender like Authorize is working fine. Please do the help.

    0 Community Answer
    Mar 10, 2016 07:32AM UTC
  • Problems with availability of HashMap in doPassiveScan (noob level)

    Hi, First of all sorry for this stupid noob question, but it has been driving me crazy for hours now. Why is "hostHashMap" null in "doPassiveScan"? How can I make hostHashMap available? Many thanks in advance! package burp; import java.awt.Component; import java.io.PrintWriter; import javax.swing.JSplitPane; import java.util.HashMap; import java.util.L...

    1 Agent Answer    0 Community Answer
    Mar 06, 2016 08:10PM UTC
  • burp extensions using makeHttpRequest

    I'm trying to create a python Burp Extension where I new to do an HTTP request. I would like to use makeHttpRequest, however I'm getting the error: "java.lang.RuntimeException: java.lang.RuntimeException: Extensions should not make HTTP requests in the Swing event dispatch thread" How can I fix this? I already tried to create a new thread with the makeHttpRequest but uns...

    1 Agent Answer    0 Community Answer
    Feb 29, 2016 05:08PM UTC
  • Proxy PAC support

    Hello there, A friend and I developed an extension in order to support proxy.pac files: https://github.com/vincd/burpproxypacextension The extension uses the proxy-vole library. Feel free to report bugs and ideas for improvement. Cheers.

    1 Agent Answer    3 Community Answers
    Feb 28, 2016 09:18PM UTC
  • Python IDE code completion

    Hello, I'm trying to properly setup a Python IDE so I can start can play around and create some Burp extensions. One of the advantages of using an IDE is of course code completion. However, I can't seem to figure out how this is done using Jython. Pycharm seems like a solid IDE. I did find this post describing how to add code completion with Jython: http://stackoverflow.com/questio...

    1 Community Answer
    Feb 14, 2016 03:52PM UTC
  • Burp Ext

    When I am running burp extension, I keep on getting following errors: Scanner: Timeout in transmission from xyz.com and Proxy: No response received from remote server. Is there anything I can do resolve this error.

    1 Agent Answer    0 Community Answer
    Feb 08, 2016 07:50PM UTC
  • NullPointerException while attempting passive or active scan from extension

    Hi Team - I am using Burp Suite Pro v1.6.36 and trying to automate passive and active scanning on incoming requests via Burp proxy. I get a NullPointerException while attempting to perform a passive or active scan and further processing seems to get skipped (i.e. adding to active scan queue, in case of active scan). However, in Burp suite UI, I see some issues getting captured as part of the ...

    1 Agent Answer    1 Community Answer
    Feb 02, 2016 04:44PM UTC
  • AMF Deserialization Dispaly Tag

    How to configure to see the AMF Deserialization tag in request and response. Refer :- https://www.netspi.com/DesktopModules/SunBlog/Handlers/Print.aspx?id=68 But it's showing error while I add it to burp extensio.

    1 Agent Answer    0 Community Answer
    Feb 02, 2016 02:33PM UTC
  • HTTP/2 - Upgrade Header filtered

    Hi, I was experimenting with curl, sending HTTP/2 requests and realised that Burp is filtering/replacing the HTTP/2 Upgrade header since version 1.6.33. Therefore no HTTP/2 communication is established with the server. I know that Burp is not supporting HTTP/2 yet and the HTTP/2 frames cannot be decoded in Burp, but is it possible to get the original, unfiltered content if a HTTP/2 request is s...

    1 Agent Answer    1 Community Answer
    Jan 28, 2016 05:37AM UTC
  • Session handling in Burp extensions

    Hi, I am currently implementing a specific attack with a Burp extension. Before I start the attack, I need to delete all cookies for the target domain. The attack consists of several HTTP requests. For these requests I need a session handling. I have been using Burps cookie jar by enabling the cookie jar for extensions (under Options->Sessions). I delete the cookies for the target domain...

    2 Agent Answers    0 Community Answer
    Jan 25, 2016 01:18PM UTC