Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/WithSecureLabs/FixerUpper

A Burp extension to enable modification of FIX messages when relayed from MitM_Relay
https://github.com/WithSecureLabs/FixerUpper

Last synced: 2 months ago
JSON representation

A Burp extension to enable modification of FIX messages when relayed from MitM_Relay

Awesome Lists containing this project

README 

        
# FixerUpper v0.1



A Burp extension to enable modification of FIX messages when relayed from MitM_Relay



# Blog post:

https://labs.withsecure.com/publications/a-bit-of-a-fixer-upper-testing-fix-backed-applications



# Installation



Can be manually installed by cloning this repository and then from within Burp Suite:

1. selecting the Extender tab

2. clicking the Add button

3. changing the Extension type to Python

4. selecting fixerupper.py as the extension file.



### Note



The extension requires Burp Suite to be configured to use Jython. For installation please see:

https://portswigger.net/burp/help/extender.html#options_pythonenv



FixerUpper is designed and intended to help with interception and modification of the TCP-based FIX protocol. As such, it is expected to be used with a TCP relay tool like MitM_Relay.py:

https://github.com/jrmdev/mitm_relay



# Basic Usage



After adding the extension you can define regular expressions for required HTTP headers, as well as the request body structure:



![FixerUpper Config](images/config_01.png)



With this done, you will then get a "Fixer Upper" tab in the request window: 



![FixerUpper Config](images/preview_01.png)