https://github.com/pasanlaksitha/decompiled-burpsuit-cracker

Decompiled source code and analysis of BurpLoaderKeygen, a tool designed to bypass Burp Suite licensing restrictions. Includes insights into encryption, runtime patching, and license generation techniques. This repository is for educational purposes only and demonstrates reverse engineering methods.
https://github.com/pasanlaksitha/decompiled-burpsuit-cracker

Last synced: 15 days ago
JSON representation

Decompiled source code and analysis of BurpLoaderKeygen, a tool designed to bypass Burp Suite licensing restrictions. Includes insights into encryption, runtime patching, and license generation techniques. This repository is for educational purposes only and demonstrates reverse engineering methods.

• Host: GitHub
• URL: https://github.com/pasanlaksitha/decompiled-burpsuit-cracker
• Owner: Pasanlaksitha
• Created: 2024-08-19T21:37:18.000Z (6 months ago)
• Default Branch: main
• Last Pushed: 2024-08-19T21:59:12.000Z (6 months ago)
• Last Synced: 2024-08-20T01:38:21.896Z (6 months ago)
• Language: Java
• Size: 22.5 KB
• Stars: 0
• Watchers: 1
• Forks: 0
• Open Issues: 0
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

README

        
# BurpLoaderKeygen Decompiled Source Code

## Overview

This repository contains the decompiled source code of the BurpLoaderKeygen Java application. The original purpose of this software is to generate and manipulate activation keys for Burp Suite, a popular web vulnerability scanner. The code here reveals various methods and mechanisms used to bypass licensing restrictions for Burp Suite and other related software.

## Project Structure

The source code is organized into the following packages and classes:

```

burploaderkeygen/

├── Filter.java

├── Keygen.java

├── KeygenForm.java

├── Loader.java

json/

├── JSONObject.java

├── JSONParse.java

├── JSONType.java

├── ParseResult.java

```

## Key Components

### Filter.java

Contains methods like `BurpFilter` and `BountyFilter` which are used to decrypt and manipulate data. These methods play a crucial role in bypassing licensing restrictions by altering license information and responses from licensing servers.

### Keygen.java

Implements the core functionality of generating fake activation keys. It utilizes embedded RSA keys and cryptographic functions to sign activation requests and generate licenses.

### KeygenForm.java

Provides a graphical user interface (GUI) for interacting with the keygen functionalities. It allows users to input commands and receive output, facilitating the key generation process.

### Loader.java

Implements a `ClassFileTransformer` that dynamically alters Java bytecode at runtime. This class is responsible for patching Burp Suite classes to enable the use of generated licenses or to bypass other software protections.

### JSON Utilities (`json/` package)

Includes classes (`JSONObject.java`, `JSONParse.java`, `JSONType.java`, `ParseResult.java`) that handle JSON parsing and manipulation. These classes are used in conjunction with the keygen functionalities to process JSON data related to licensing.

## Analysis

### Security Implications

The code in this repository demonstrates how software protection mechanisms, like those in Burp Suite, can be bypassed through decompilation and reverse engineering. Key activities include:

- **Decryption**: Decrypting Base64 encoded data to manipulate license-related information.

- **Patching**: Modifying runtime classes to alter the behavior of software like Burp Suite.

- **License Generation**: Creating unauthorized licenses using embedded RSA keys.

put issue for take down the repo