https://github.com/c0ny1/chunked-coding-converter

Burp suite 分块传输辅助插件
https://github.com/c0ny1/chunked-coding-converter

burpsuite-extender chunked sleep-chunked

Last synced: 5 days ago
JSON representation

Burp suite 分块传输辅助插件

• Host: GitHub
• URL: https://github.com/c0ny1/chunked-coding-converter
• Owner: c0ny1
• License: mit
• Created: 2019-03-14T23:45:20.000Z (over 5 years ago)
• Default Branch: master
• Last Pushed: 2022-02-23T01:54:14.000Z (almost 3 years ago)
• Last Synced: 2024-11-30T14:06:28.213Z (12 days ago)
• Topics: burpsuite-extender, chunked, sleep-chunked
• Language: Java
• Homepage:
• Size: 702 KB
• Stars: 1,938
• Watchers: 31
• Forks: 295
• Open Issues: 4
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

• awesome-burp-extensions - Chunked coding converter - This entension use a Transfer-Encoding technology to bypass the waf. (Web Application Firewall Evasion / SSRF)
• awesome-hacking-lists - c0ny1/chunked-coding-converter - Burp suite 分块传输辅助插件 (Java)

README

        
# Chunked coding converter

本插件主要用于分块传输绕WAF，不了解分块传输绕WAF的请阅读文末的文章。

## 插件编译

```

mvn package

```

## 插件使用

![菜单](doc/menu.png)

![配置](doc/config.png)

延时分块传输

![延时分块传输](doc/bypass-through-sleep-chunked.png)

## 相关文章

* [利用分块传输吊打所有WAF](https://www.anquanke.com/post/id/169738)

* [在HTTP协议层面绕过WAF](https://www.freebuf.com/news/193659.html)

* [编写Burp分块传输插件绕WAF](https://mp.weixin.qq.com/s?__biz=Mzg3NjA4MTQ1NQ==&mid=2247483787&idx=1&sn=54c33727696f8ee6d67f997acc11ab89&chksm=cf36f9cbf84170dd7da9b48b3365fb05d7ccec6bdeff480d0c38962f712e400a40b2b38dc467&token=360242838&lang=zh_CN#rd)

* [Java反序列化数据绕WAF之延时分块传输](https://gv7.me/articles/2021/java-deserialized-data-bypasses-waf-through-sleep-chunked/)