■ ■ ■ ■ ■ ■
src/burp/BurpExtender.java
skipped 34 lines 35 35 new Utilities(callbacks, new HashMap<>(), name); 36 36 37 37 // config only (currently param-guess displays everything) 38 - configSettings.register("Add 'fcbz' cachebuster", false, "blah "); 39 - configSettings.register("Add dynamic cachebuster", false); 40 - configSettings.register("Add header cachebuster", false); 41 - configSettings.register("learn observed words", false); 42 - configSettings.register("enable auto-mine", false); 43 - configSettings.register("auto-mine headers", false); 44 - configSettings.register("auto-mine cookies", false); 45 - configSettings.register("auto-mine params", false); 46 - configSettings.register("auto-nest params", false); 38 + configSettings.register("Add 'fcbz' cachebuster", false, "Add a static cache - buster to all outbound requests , to avoid manual cache poisoning probes affecting other users "); 39 + configSettings.register("Add dynamic cachebuster", false, " Add a dynamic cache - buster to all requests , to avoid seeing cached responses " ); 40 + / / configSettings.register("Add header cachebuster", false); 41 + configSettings.register("learn observed words", false, " During Burp ' s passive scanning , record all words seen in the response and use them when guessing parameters . " ); 42 + configSettings.register("enable auto-mine", false, " Automatically launch param guessing attacks on traffic as it passes through the proxy " ); 43 + configSettings.register("auto-mine headers", false, " When auto - mining proxied traffic , guess headers " ); 44 + configSettings.register("auto-mine cookies", false, " When auto - mining proxied traffic , guess cookies ); 45 + configSettings.register("auto-mine params", false, " When auto - mining proxied traffic , guess parameters ); 46 + configSettings.register("auto-nest params", false, " When guessing parameters in JSON , attempt to guess deeper in nested structures . Might not work . " ); 47 47 48 48 // param-guess only 49 49 //guessSettings.importSettings(globalSettings); 50 50 guessSettings.register("learn observed words", false); 51 - guessSettings.register("skip boring words", true); 52 - guessSettings.register("only report unique params", false); 53 - guessSettings.register("response", true); 54 - guessSettings.register("request", true); 55 - guessSettings.register("use basic wordlist", true); 56 - guessSettings.register("use bonus wordlist", false); 57 - guessSettings.register("use assetnote params", false); 58 - guessSettings.register("use custom wordlist", false); 59 - guessSettings.register("custom wordlist path", "/usr/share/dict/words"); 60 - guessSettings.register("bruteforce", false); 61 - guessSettings.register("skip uncacheable", false); 62 - guessSettings.register("dynamic keyload", false); 51 + guessSettings.register("skip boring words", true, " When mining headers , don ' t check for well known and typically not very exciting headers " ); 52 + guessSettings.register("only report unique params", false, " Only report a parameter with a given name once , regardless of how many endpoints are scanned " ); 53 + guessSettings.register("response", true, " Extract words from the target request , and use these to guess params " ); 54 + guessSettings.register("request", true, "Extract words from the target response, and use these to guess params. Highly recommended."); 55 + guessSettings.register("use basic wordlist", true, " When guessing params , use the core wordlist " ); 56 + guessSettings.register("use bonus wordlist", false, " When guessing params , also use a generic wordlist " ); 57 + guessSettings.register("use assetnote params", false, " When guessing params , use the assetnote wordlist " ); 58 + guessSettings.register("use custom wordlist", false, " Load a custom wordlist from the configured path " ); 59 + guessSettings.register("custom wordlist path", "/usr/share/dict/words", " Load a custom wordlist from the configured path " ); 60 + guessSettings.register("bruteforce", false, "When all the wordlist have run out, switch to guessing params with a never-ending pure bruteforce attack."); 61 + guessSettings.register("skip uncacheable", false, " Refuse to guess params on responses that aren ' t cacheable ? " ); 62 + guessSettings.register("dynamic keyload", false, " When guessing params , extract words from every observed response . This is very powerful and quite buggy . " ); 63 63 guessSettings.register("max one per host", false); 64 64 guessSettings.register("max one per host+status", false); 65 65 guessSettings.register("probe identified params", true); skipped 531 lines