Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/p1g3/Fastjson-Scanner
a burp extension to find where use fastjson
https://github.com/p1g3/Fastjson-Scanner
Last synced: 3 months ago
JSON representation
a burp extension to find where use fastjson
- Host: GitHub
- URL: https://github.com/p1g3/Fastjson-Scanner
- Owner: p1g3
- Created: 2020-03-29T00:51:06.000Z (over 4 years ago)
- Default Branch: master
- Last Pushed: 2020-03-29T00:57:59.000Z (over 4 years ago)
- Last Synced: 2024-05-13T19:32:18.517Z (6 months ago)
- Language: Python
- Size: 4.88 KB
- Stars: 164
- Watchers: 4
- Forks: 21
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
- awesome-hacking-lists - p1g3/Fastjson-Scanner - a burp extension to find where use fastjson (Python)
README
# Fastjson-Scanner
闲来无事,在家写了个fastjson后端组件探测,用于探测后端是否使用fastjson。
使用的poc如下:
```
fastjson_poc = '{{"@type":"java.net.URL","val":"http://%s"}:"x"}' % val
```
### 优点
不仅能够探测POST中的json数据,还能够判断GET中的json数据,支持urlencode、urldecode等。
两种数据对应格式如下:
GET:
```
GET /?json={"fastjson":"example"}
```
POST:
```
POST /
...
{"fastjson":"example"}
```
### 使用方法
导入插件即可默认开始使用,对数据包进行被动扫描,由于使用的是burp自带的dnslog,所以稍微会有电脑延时,代码里写了sleep 10来获取result。
当导入数据包后,在burp内可以看到FastjsonScanner这个窗口,代表导入成功,当探测成功后,会在其中显示对应的数据包以及参数:
