Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/CompassSecurity/burp-copy-request-response
Burp extension for quickly copying request/response data.
https://github.com/CompassSecurity/burp-copy-request-response
Last synced: 24 days ago
JSON representation
Burp extension for quickly copying request/response data.
- Host: GitHub
- URL: https://github.com/CompassSecurity/burp-copy-request-response
- Owner: CompassSecurity
- Created: 2020-10-02T07:44:07.000Z (about 4 years ago)
- Default Branch: master
- Last Pushed: 2024-02-19T08:37:41.000Z (10 months ago)
- Last Synced: 2024-08-04T00:04:14.130Z (4 months ago)
- Language: Python
- Size: 6.16 MB
- Stars: 27
- Watchers: 8
- Forks: 17
- Open Issues: 2
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
- awesome-burp-extensions - Copy Request & Response - The Copy Request & Response Burp Suite extension adds new context menu entries that can be used to simply copy the request and response from the selected message to the clipboard. (Custom Features)
- awesome-hacking-lists - CompassSecurity/burp-copy-request-response - Burp extension for quickly copying request/response data. (Python)
README
# Burp Extension: Copy Request & Response
## Description
Writing good reports is key in penetration tests / security assessments, since
this is the final result delivered to the customer. Vulnerabilities should be
described in a way so that the customer can understand and also reproduce the
issue. For web application pentests, the best way is often to show the HTTP
requests and responses to explain an issue. This Burp Suite extension "Copy
Request & Response" can assist you while the report.
When copying request/response from Burp, the workflow is often like this:
1. Select the request
2. Copy to clipboard
3. Switch to your reporting tool (Word, Markdown, Web App, LaTeX Editor, `$YOUNAMEIT`)
4. Paste the request
5. Switch back to Burp
6. Select the response (or only part of it if body is too big and you ony want to show the issue)
7. Copy to clipboard
8. Switch back to the report
9. Paste again
10. Add context to explain the request / response
The Copy Request & Response Burp Suite extension adds new context menu
entries that can be used to simply copy the request and response from the
selected message to the clipboard.
The workflow can then look like this:
1. Select what you want to copy from the context menu
2. Switch to the reporting tool
3. Paste
4. Add context to explain the request / response
Much easier, right? 😉
From a technical view, this is probably the most boring Burp Suite extension.
However, it allows you to spend more time on testing than documenting.
## Features
The extension offers the following copy methods in the context menu of selected
messages and request / responses:
- Copy entire request & response of selected message
- Copy entire request & response header
- Copy entire request & response header + selected response data
Screenshot:
## Demo
The following demo shows the 3 different copy methods:
## Build
To build the extension run
```shell
./gradlew jar
```
## Configuration
It is possible to configure the "cut text". By default it is set to "[...]". To change this, add a similar entry to
your user.vmoptions where BurpSuite is installed
```properties
-DcopyRequestResponse.cutText.text=[CUT BY COMPASS]
```
If you want to use non-breaking spaces (\\u00a0), the following property will replace all spaces to non-breaking spaces:
```properties
-DcopyRequestResponse.cutText.useNbsp=true
```
## Author
- Emanuel Duss (GitHub: [emanuelduss](https://github.com/emanuelduss), Twitter: [emanuelduss](https://twitter.com/emanuelduss))
- Tobias Hort-Giess (GitHub: [t-hg](https://github.com/t-hg))