https://github.com/portswigger/collaborator-everywhere

A Burp Suite Pro extension which augments your proxy traffic by injecting non-invasive headers designed to reveal backend systems by causing pingbacks to Burp Collaborator
https://github.com/portswigger/collaborator-everywhere

Last synced: about 7 hours ago
JSON representation

A Burp Suite Pro extension which augments your proxy traffic by injecting non-invasive headers designed to reveal backend systems by causing pingbacks to Burp Collaborator

• Host: GitHub
• URL: https://github.com/portswigger/collaborator-everywhere
• Owner: PortSwigger
• Created: 2017-07-27T07:18:25.000Z (over 7 years ago)
• Default Branch: master
• Last Pushed: 2023-12-01T14:37:34.000Z (12 months ago)
• Last Synced: 2024-11-06T23:17:47.280Z (7 days ago)
• Language: Java
• Homepage:
• Size: 81.1 KB
• Stars: 425
• Watchers: 21
• Forks: 95
• Open Issues: 16
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

README

        
This is a Burp Suite Pro extension which augments your in-scope proxy traffic by injecting non-invasive headers designed to reveal backend systems by causing pingbacks to Burp Collaborator.

 

To use it, simply install it and browse the target website. Findings will be presented in the 'Issues' tab. You can easily customise injected payloads by editing /resources/injections

For further information, please refer to the whitepaper at [https://portswigger.net/research/cracking-the-lens-targeting-https-hidden-attack-surface](https://portswigger.net/research/cracking-the-lens-targeting-https-hidden-attack-surface)