Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/p1g3/Fastjson-Scanner
a burp extension to find where use fastjson
https://github.com/p1g3/Fastjson-Scanner
Last synced: 21 days ago
JSON representation
a burp extension to find where use fastjson
- Host: GitHub
- URL: https://github.com/p1g3/Fastjson-Scanner
- Owner: p1g3
- Created: 2020-03-29T00:51:06.000Z (over 4 years ago)
- Default Branch: master
- Last Pushed: 2020-03-29T00:57:59.000Z (over 4 years ago)
- Last Synced: 2024-08-05T17:36:44.748Z (4 months ago)
- Language: Python
- Size: 4.88 KB
- Stars: 164
- Watchers: 4
- Forks: 21
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
- awesome-hacking-lists - p1g3/Fastjson-Scanner - a burp extension to find where use fastjson (Python)
README
# Fastjson-Scanner
闲来无事,在家写了个fastjson后端组件探测,用于探测后端是否使用fastjson。
使用的poc如下:
```
fastjson_poc = '{{"@type":"java.net.URL","val":"http://%s"}:"x"}' % val
```### 优点
不仅能够探测POST中的json数据,还能够判断GET中的json数据,支持urlencode、urldecode等。
两种数据对应格式如下:
GET:
```
GET /?json={"fastjson":"example"}
```POST:
```
POST /...
{"fastjson":"example"}
```### 使用方法
导入插件即可默认开始使用,对数据包进行被动扫描,由于使用的是burp自带的dnslog,所以稍微会有电脑延时,代码里写了sleep 10来获取result。
![first](https://s1.ax1x.com/2020/03/29/GEalbF.png)
当导入数据包后,在burp内可以看到FastjsonScanner这个窗口,代表导入成功,当探测成功后,会在其中显示对应的数据包以及参数:
![second](https://s1.ax1x.com/2020/03/29/GEawDO.png)