parse-burp icon indicating copy to clipboard operation
parse-burp copied to clipboard

Published 20 hours ago verified publisher icon R3dy

Parser no longer working

Open leebaird opened this issue 9 years ago • 3 comments

Something has changed in the xml output causing the parser to stop working recently. There are no error printed to the screen. The output consists of a single line of misc characters.

leebaird avatar Mar 14 '15 20:03 leebaird

Please provide an example console output. Also, what version of Burpsuite are you using? What is the XML version of the file your trying to parse? How big is it. Does it contain vulnerabilities? Did you choose to base64 encode the output from burp?

The last question is probably the most important but please try and answer the others.

R3dy avatar Mar 14 '15 22:03 R3dy

Normal console output. v1.6.12 v1.1 2MB Yes No

Viewing the file using gedit on Linux, I get an error: The file you opened has some invalid characters. If you continue editing this file you could corrupt this document. You can also choose another character encoding and try again.

Here is a sample of bad characters: Date: Fri, 27 Feb 2015 16:18:06 GMT Server: Apache/2.2.22 (Win32) mod_ssl/2.2.22 OpenSSL/0.9.8t mod_jk/1.2.31 X-Powered-By: Accept-Ranges: bytes ETag: W/"973-1350562278000" Last-Modified: Thu, 18 Oct 2012 12:11:18 GMT Content-Length: 973 Keep-Alive: timeout=5 Connection: Keep-Alive Content-Type: image/gif

ノPNG \00\00\00 IHDR\00\00\00\00\00\00\00\00\00oᆰᆵ\00\00\00sBITᅴ£O¢\00\00\00 pHYs\00\00\00\00ᅭ￝~\00\00\00tEXtCreation Time\0004/07/11Y\00\00\00tEXtSoftware\00Adobe FireworksOᄈN\00\00_IDAT8ヘᆳユ?HQᅦᅳ"ᆳヤ￶l)ᅤbAᄀVᄂU$q￈ᅬEᄎᆪテᄂupᄈᆬ￉￐¢ᅯk(tr BQフ:튜뀌￁4!-モリ;서_1ノ&^ᄐ키{゙Mᅯ$ヤツ?￞r﾿ ̄}￟￯�ᆱ ト￀ED¥ナP\00¢rᄍᄁ"zS^ヤF)-E3₩kfヨaヘᅰᅥᅭRツ,￴ }ᄚ %ヌyᅪᅩ￲ᅤᆰハs=Biᅯᄈ￞モwQ.ᄉ￧]￧←ᅩルy￶=]ᄀᆴR\yᄚミ^fテᄍ\!t~jツ,0~ᆭᅵフ│ᄄ\EF\BF\BEV■ノ{2Zᅥラ￰￉Xᄊ?ᄋタ$Iトミツᆪ~ᄆ﾿ワラ₩ᆱᅪt6[6ᅢᅢ-ユ-ᅪOレ￝|ᄡᄐ삐i\00タd2Yp$￈Bq�→\EF\BF\BE→OᆪOラᅭK*Vwᅮᄏ=/{ニ'ニ￳=e↑O￀\00<ᅬBN@ᅫリ3ᆵᆵ\ᆳ4|7p﾿ᄍ_ᅧᆵH&¬リsフW5￵ᄊ○6\00￸~\00h■nタマ￯タᅨ¥*タᅩkfJᄆ ᄊノ￸トフ¥←￐ᄡuᅯJ+ᄐミrᅭハᄌBᆭAモi￐¦\EF\BF\BE¬ᆭᅱz{{ᅬテᅡᅦ£│Qt￲ᅦ$&￘￐f\00タ£ノ£ᄂメワMs゚8ᆱ}￯ᄄX￟ᆭᅦᅴ￝￶ハンタᄇZ6(%Mᅭᄋ← qワリ:E4c4IレヤP￴\004ᄁ■￉{ᅵgNUᅰᅬ￳ヘマ_ᅬᄒVᄚᅡ}₩\00¢ᆳ￷ᆳᆰᄅTwᅴᅤ#フᄊQ￧wタ}ᅤ¦,!ᅨロ￘j!cccTᅮᅳ￝ハᄊSᅦ￐ツ/￞﾿ᅠ qᅯ￈|\ヘ￯+ᅴᅧ￶￐ᅥᆲツ￱ᄃᄆ\00ハᅤbᄃw ᄊ|b\ᅩ'ᆳᆪᅱル￰ᅩᆴᄎklᄃᄋネ3₩,タ!\00¢ヘx←ᄎ@'ᅴノ ᄊ<ᄈ8₩→G→ᄁ,ᄎv\ᄎᅠ○4ナ￱3ᄁ,゙￱<Oᅲ↓リs￐.drル yc£p￁ᄇヤ<1y;ミᆰᆰ\00Pᆱᆱᅰネミ V"ᅦムムᆳム*_UᄍsᅦF￘ᅭᅲBᄄᄅᄅᄅ₩NMZ{Tホ*D￉¬l￉ᆪ\00￶[v￷=￷ヘK7 ᄅ¬+ ᄁF/プ￱ᅣ=\EF\BF\BFᄒ￘￲1ロレ￵ᆭᄐチl \00ᅠᄒᆰ￞Xmdヨe￘3F\EF\BF\BEFY￐\EF\BF\BFᅥナᄑ"\00fマZノ￝ᅦ￵\00\00\00\00IENDᆴB`ツ]]>

leebaird avatar Mar 19 '15 17:03 leebaird

the script uses ruby's Nokogiri gem to parse XML. It doesn't know how to make sense of a PNG file. I should probably be requiring base64 encoded paramaters and simply decode them while parsing. Stay tuned for an update.

R3dy avatar Nov 20 '15 15:11 R3dy