BurpExtractor
BurpExtractor copied to clipboard
NetSPI
A Burp extension for generic extraction and reuse of data within HTTP requests and responses.
Other tools exist outside of the types specified by BurpExtractor, such as Sequencer. It would be nice if this extension supported those. Some options might include one-or-more of the following:...
Selecting a piece of a response header (to use it as a random input element in requests) failed to match in Repeater after enabling the extraction (despite showing a test...
After setting everything according to the instructions the field `Value to insert:` is updated correctly whenever I refresh the token generating page but how am I supposed to move this...
Is it possible to add "Extender" to InScopeTools.java for replacing tokens in other plugin requests which invoked during active scan phase?
During scanning some extensions put their payloads in it, but those requests are still marked as "Extender" tool. There is no "Extender" option in "Select in-scope tools" menu, and because...
This seems to have fixed #8 the disappearance of the response editor on reloads. This change does not come with a firm proof in tests.
Content-Length does not change when injecting tokens into request bodies I am using the version of BurpExtractor from PortSwigger which is currently 11 commits behind the upstream.
When using Extractor to auto-replace Authorization: Bearer tokens, I can get it to work fine while using Repeater, but as soon as I launch a scan, my entire laptop goes...
