Presentation is loading. Please wait.

Presentation is loading. Please wait.

AppSec USA 2014 Denver, Colorado Customizing Burp Suite Getting the Most out of Burp Extensions.

Published byLora Nicholson Modified over 8 years ago

Similar presentations

Presentation on theme: "AppSec USA 2014 Denver, Colorado Customizing Burp Suite Getting the Most out of Burp Extensions."— Presentation transcript:

1 AppSec USA 2014 Denver, Colorado Customizing Burp Suite Getting the Most out of Burp Extensions

2 2 August Detlefsen Senior Application Security Consultant augustd@codemagi.com @codemagi http://www.codemagi.com/blog

3 3 Burp Suite Burp Suite is a powerful tool for performing security assessments Burp Plugin API allows new features to be added

4 4 What Can I Do With Plugins? Passive Scanning Active Scanning Alter/append requests Define Insertion Points for Scanner/Intruder

5 5 Prerequisites Burp Suite Pro v 1.5.x Java 1.6.x NetBeans Other programming languages

6 6 Creating An Extension Download the Extender API from Portswigger: http://portswigger.net/burp/extender/api/bur p_extender_api.zip http://portswigger.net/burp/extender/api/bur p_extender_api.zip

7 7 Creating an Extension Create a new project with existing sources:

8 8 Creating an Extension Create the BurpExtender class – In package ‘burp’ – Implement IBurpExtender

9 9 Creating an Extension

10 10 Creating an Extension Implement registerExtenderCallbacks

11 11 Load the Extension into Burp Suite

12 12 Passive Scanning Search responses for problematic values Built-in passive scans – Credit card numbers – Known passwords – Missing headers Building a Passive Scanner

13 13 Passive Scanning – Room for Improvement Error Messages Software Version Numbers Building a Passive Scanner

14 14 Building a Passive Scanner Implement the IScannerCheck interface: Register the extension as a scanner: Building a Passive Scanner

15 15 IScannerCheck.doPassiveScan() Building a Passive Scanner

16 16 IScannerCheck.doPassiveScan() Building a Passive Scanner

17 17 IScannerCheck.consolidateDuplicateIssues() Ensure an issue is only posted to scanner once Building a Passive Scanner

18 18 IScannerCheck.doActiveScan() Only needed for active scans Building a Passive Scanner

19 19 Active Scanning Issue requests containing attacks Look for indication of success in response Built-In Active Scans – XSS – SQL Injection – Path Traversal – etc Building an Active Scanner

20 20 IScannerCheck.doActiveScan() Building an Active Scanner

21 21 Insertion Points Locations of parameters in request Contain data the server will act upon Building an Active Scanner

22 22 Building an Active Scanner

23 23 Building an Active Scanner

24 24 Defining Insertion Points Implement IScannerInsertionPointProvider – getInsertionPoints() Register as an insertion point provider Building an Active Scanner

25 25 BurpExtender.getInsertionPoints() Building an Active Scanner

26 26 Building an Active Scanner

27 27 Debugging callbacks.printOutput(String) callbacks.printError(String) Exception.printStackTrace() Utilities

28 28 Debugging – Stack Traces Get the error OutputStream Print a stack trace to the stream Utilities

29 29 Summary Setup Passive Scanning Active Scanning Handling custom request types Utilities

30 30 Build Extensions! Profit!

Download ppt "AppSec USA 2014 Denver, Colorado Customizing Burp Suite Getting the Most out of Burp Extensions."

Similar presentations

Approaches to meeting the PCI Vulnerability Management and Penetration Testing Requirements Clay Keller.

Approaches to meeting the PCI Vulnerability Management and Penetration Testing Requirements Clay Keller.
Copyright © 2006 - The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the Creative Commons Attribution-ShareAlike.

Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the Creative Commons Attribution-ShareAlike.
Hands on Demonstration for Testing Security in Web Applications

Hands on Demonstration for Testing Security in Web Applications
© Tally Solutions Pvt. Ltd. All Rights Reserved Customisation of Shoper 9 October 2009.

© Tally Solutions Pvt. Ltd. All Rights Reserved Customisation of Shoper 9 October 2009.
PulseHR Time and Attendance software development and coding web development, web hosting IT project management and consulting www.pulsesoft.ro Str. Ghioceilor.

PulseHR Time and Attendance software development and coding web development, web hosting IT project management and consulting Str. Ghioceilor.
LINUX-WINDOWS INTERACTION. One software allowing interaction between Linux and Windows is WINE. Wine allows Linux users to load Windows programs while.

LINUX-WINDOWS INTERACTION. One software allowing interaction between Linux and Windows is WINE. Wine allows Linux users to load Windows programs while.
© 2008 MindTree Consulting© 2010 MindTree Limited CONFIDENTIAL: For limited circulation only Going Open Source in Performance Testing July 2010.

© 2008 MindTree Consulting© 2010 MindTree Limited CONFIDENTIAL: For limited circulation only Going Open Source in Performance Testing July 2010.
OWASP Xenotix XSS Exploit Framework

OWASP Xenotix XSS Exploit Framework
Automating Bespoke Attack Ruei-Jiun Chapter 13. Outline Uses of bespoke automation ◦ Enumerating identifiers ◦ Harvesting data ◦ Web application fuzzing.

Automating Bespoke Attack Ruei-Jiun Chapter 13. Outline Uses of bespoke automation ◦ Enumerating identifiers ◦ Harvesting data ◦ Web application fuzzing.
Into the Mind of the Hacker: Hands-On Web Application Hacking Adam Doupé University of California, Santa Barbara 4/23/12.

Into the Mind of the Hacker: Hands-On Web Application Hacking Adam Doupé University of California, Santa Barbara 4/23/12.
Red Hat Linux Network. Red Hat Network Red Hat Network is the environment for system- level support and management of Red Hat Linux networks. Red Hat.

Red Hat Linux Network. Red Hat Network Red Hat Network is the environment for system- level support and management of Red Hat Linux networks. Red Hat.
MC365 Application Servers: Servlets. Today We Will Cover: What a servlet is The HTTPServlet and some of its more important methods How to configure the.

MC365 Application Servers: Servlets. Today We Will Cover: What a servlet is The HTTPServlet and some of its more important methods How to configure the.
© 2009 Research In Motion Limited Advanced Java Application Development for the BlackBerry Smartphone Trainer name Date.

© 2009 Research In Motion Limited Advanced Java Application Development for the BlackBerry Smartphone Trainer name Date.
CS 225 Section 1 Spring 2009. Topics Software design Correctness and Efficiency Inheritance Data structures –Lists, Stacks, Queues –Trees –Sets, Maps.

CS 225 Section 1 Spring Topics Software design Correctness and Efficiency Inheritance Data structures –Lists, Stacks, Queues –Trees –Sets, Maps.
Leveraging User Interactions for In-Depth Testing of Web Applications Sean McAllister, Engin Kirda, and Christopher Kruegel RAID ’08 1 Seoyeon Kang November.

Leveraging User Interactions for In-Depth Testing of Web Applications Sean McAllister, Engin Kirda, and Christopher Kruegel RAID ’08 1 Seoyeon Kang November.
CaTissue customizations at Indiana University and Regenstrief Institute.

CaTissue customizations at Indiana University and Regenstrief Institute.
NetBeans IDE Downloading and Installation Guide. Downloading NetBeans IDE Installation Setup.

NetBeans IDE Downloading and Installation Guide. Downloading NetBeans IDE Installation Setup.
SEEM4570: XAMPP, Eclipse, Summary of Html Kangfei Zhao Room 711,ERB

SEEM4570: XAMPP, Eclipse, Summary of Html Kangfei Zhao Room 711,ERB
Security Scanning OWASP Education Nishi Kumar Computer based training

Security Scanning OWASP Education Nishi Kumar Computer based training
Using Ant to build J2EE Applications Kumar

Using Ant to build J2EE Applications Kumar

Similar presentations

Ads by Google