Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/PortSwigger/collaborator-everywhere

A Burp Suite Pro extension which augments your proxy traffic by injecting non-invasive headers designed to reveal backend systems by causing pingbacks to Burp Collaborator
https://github.com/PortSwigger/collaborator-everywhere

Last synced: about 2 months ago
JSON representation

A Burp Suite Pro extension which augments your proxy traffic by injecting non-invasive headers designed to reveal backend systems by causing pingbacks to Burp Collaborator

Host: GitHub
URL: https://github.com/PortSwigger/collaborator-everywhere
Owner: PortSwigger
Created: 2017-07-27T07:18:25.000Z (about 7 years ago)
Default Branch: master
Last Pushed: 2023-12-01T14:37:34.000Z (10 months ago)
Last Synced: 2024-07-30T20:33:23.668Z (about 2 months ago)
Language: Java
Homepage:
Size: 81.1 KB
Stars: 419
Watchers: 21
Forks: 97
Open Issues: 16
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

WebHackersWeapons - collaborator-everywhere - everywhere?label=%20)|[`oast`](/categorize/tags/oast.md)|![linux](/images/linux.png)![macos](/images/apple.png)![windows](/images/windows.png)![burp](/images/burp.png)[![Java](/images/java.png)](/categorize/langs/Java.md)| (Weapons / Burpsuite, Caido and ZAP Addons)

README

This is a Burp Suite Pro extension which augments your in-scope proxy traffic by injecting non-invasive headers designed to reveal backend systems by causing pingbacks to Burp Collaborator.

To use it, simply install it and browse the target website. Findings will be presented in the 'Issues' tab. You can easily customise injected payloads by editing /resources/injections

For further information, please refer to the whitepaper at [https://portswigger.net/research/cracking-the-lens-targeting-https-hidden-attack-surface](https://portswigger.net/research/cracking-the-lens-targeting-https-hidden-attack-surface)