Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/portswigger/python-scripter

Sourced from gist: https://gist.github.com/mwielgoszewski/7026954
https://github.com/portswigger/python-scripter

Last synced: 3 months ago
JSON representation

Sourced from gist: https://gist.github.com/mwielgoszewski/7026954

Host: GitHub
URL: https://github.com/portswigger/python-scripter
Owner: PortSwigger
Created: 2017-01-09T01:34:04.000Z (almost 8 years ago)
Default Branch: master
Last Pushed: 2022-05-20T12:49:10.000Z (over 2 years ago)
Last Synced: 2024-04-08T11:35:46.671Z (7 months ago)
Language: Python
Size: 164 KB
Stars: 48
Watchers: 6
Forks: 11
Open Issues: 6
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

awesome-burp-extensions - Python Scripter - This extension allows execution of a custom Python script on each HTTP (Scripting)

README

# Python Scripter
[Current parent repository](https://github.com/stavinski/python-scripter)

## Introduction

This extension allows you to write custom Python to hook into both the request, response pipeline and also the Macro handling support in Burp Suite. This is useful in those times were you want some behaviour but don't want to have to go to the full extent of creating a custom extension.

You can also over time build up a useful collection of utility scripts that can be used across web assessments.

I would highly recommend to build off the already established framework [pyscripter-er](https://github.com/lanmaster53/pyscripter-er) that already has a lot of common functionality built-in to save you some of the leg work.

## Usage

Once the extension is installed you will find a `Python Scripts` tab, this allows you to add, modify or remove scripts:

![Python Scripts with no scripts](images/new.png)

When you add a new script it will be given a name of `New Script X` this can be changed in the same way as in the `Repeater` tabs by double clicking and pressing Enter to confirm or Esc to cancel.

You can then start changing the new script or pasting a script from another location directly into the editor:

![Renaming the script via the tab](images/rename.png)

When your ready to compile the Python code simply click `Compile`, compile time errors these will be displayed in the `Errors` textarea:

![Compile time errors](images/error.png)

To test the script simply enable it and then push through a request, output should be presented in the `Output` textarea:

![Script output](images/output.png)

If there was a runtime exception these will also be captured in the `Errors` textarea to help diagnose the bug.

__Scripts are automatically restored and saved on extension load and unload.__

## State Dictionary

There are scenarios when values retrieved from previous requests or responses are required for the next request, this can sometimes be performed using Macros however if this behaviour is used for every endpoint this becomes unworkable as a solution. That is why the `state` dictionary was introduced so that it is possible to persist values that can be later retrieved in a subsequent request/response.

An example of this could be an application that returns a unique token in the response and this must be provided into the next request, this could be handled using the following:

~~~python
if messageIsRequest:
if 'x-req' in state: # see if we have a token from prev resp
req = helpers.analyzeRequest(messageInfo)
headers = req.headers
headers.add('X-Request: {}'.format(state['x-req'])) # put the token into the req
body = messageInfo.request[req.bodyOffset:]
new_req = helpers.buildHttpMessage(headers, body)
messageInfo.request = new_req # replace the current req with the updated version
print('Added X-Request header: {}'.format(state['x-req']))
else:
token = ... # perform retrieval of token (e.g. hidden form field, meta tag etc...); Macro regex generator could help with this ;)
state['x-req'] = token # save in state to be used in next req
print('Saved X-Request from response: {}'.format(token))
~~~

## FAQs

__Q. Why do I see no output?__

A. As long as the script is enabled this could be that there was a runtime exception raised, firstly check the `Errors` textarea, could be that the scope checking in place is incorrect if your using `callbacks.isInScope` perhaps placing a `print` before and after this is comparesd coud help track down the issue. It may also be the case that the extension has an exception in which case you should check the `Errors` textare from the extensions dialog in Burp Suite.

## Original Work

Sourced from gist: https://gist.github.com/mwielgoszewski/7026954