| IDA Plugins | Preferred | Neutral | Unreviewed |
|---|
Parsia Hakimian parsiya
defparam
/ MutateMethods.py
Last active
July 22, 2024 20:09
Example of using Turbo Intruder in a "listen and attack" mode. Because turbo intruder's jython interpreter is technically inside burp you can have turbo intruder scripts use the plugin API. Here we use burp.IProxyListener to intercept requests and reissue them inside turbo intruder mutating the method.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| from threading import Thread | |
| import time | |
| class TrafficMagnet(burp.IProxyListener): | |
| def __init__(self): | |
| callbacks.registerProxyListener(self) | |
| self._helpers = callbacks.getHelpers() | |
| self._callbacks = callbacks | |
pajswigger
/ burp-summary-report.xsl
Created
October 10, 2018 08:58
XSLT file to generate a summary HTML report from a Burp XML report
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?xml version="1.0" encoding="UTF-8"?> | |
| <xsl:stylesheet version="1.0" xmlns:xsl="http://www.w3.org/1999/XSL/Transform"> | |
| <xsl:output method="html" indent="no"/> | |
| <xsl:key name="issue-by-type" match="issue" use="type" /> | |
| <xsl:template match="/issues"> | |
| <html> | |
| <head> | |
| <title>Burp Scanner Report</title> |
pajswigger
/ jython-code-completion.md
Last active
November 8, 2019 04:18
The IntelliJ Python plugin supports code completion and this can recognize the Burp API. First, make sure your project has the SDK set to Jython:
Then, add the Burp API as a library:
Rurik
/ parse_procmon_filters.py
Last active
December 5, 2021 16:55
Quick tool to find and extract filters from Procmon configuration files
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Procmon Rule Parser v0.02 | |
| # Brian Baskin - @bbaskin | |
| # Reads default rules from an exported Procmon Configuration (.PMC) or Procmon Filter (.PMF) file | |
| # Example output: | |
| """ | |
| 12:09:59-bbaskin@~/Development/Noriben$ python parse_procmon_filters.py -f ProcmonConfiguration.pmc | |
| [Exclude] Process Name is Procmon64.exe | |
| [Exclude] Operation is QueryStandardInformationFile | |
| [Exclude] Operation is RegOpenKey | |
| [Exclude] Operation is NotifyChangeDirectory |
zxbodya
/ source-map-unpacker.js
Created
June 8, 2015 23:28
script to extract sources, from sourcesContent field in sourcemap
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| 'use strict'; | |
| var fs = require('fs'); | |
| var maps = [ | |
| fs.readFileSync('./main.xxxx.js.map'), | |
| fs.readFileSync('./1.chunk.xxxx.js.map'), | |
| fs.readFileSync('./2.chunk.xxxx.js.map'), | |
| fs.readFileSync('./3.chunk.xxxx.js.map') | |
| ]; |