Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/NetSPI/JSWS

JavaScript Web Service Proxy Burp Plugin
https://github.com/NetSPI/JSWS

Last synced: about 1 month ago
JSON representation

JavaScript Web Service Proxy Burp Plugin

Awesome Lists containing this project

README

        

# JSWS

Burp Extenstion to parse JavaScript WebService Proxies and create sample requests.

The blog explaining JSWS and the use case can be found at https://blog.netspi.com/attacking-javascript-web-service-proxies-burp/

## Download

The plugin can be downloaded from the releases tab and loaded into Burp under the Extender tab.

## Use

Right click a request or response containing the JSWS and select Parse JSWS.

![alt-tag](https://blog.netspi.com/wp-content/uploads/2017/02/parse-JSWS.png)

This will send the request to the JSWS tab and parse out all possible reqeusts.

![alt-tag](https://blog.netspi.com/wp-content/uploads/2017/02/JSWS-tab.png)

From this tab you can send any of the newly crafted requests to Repeater, Scanner, Intruder, etc.