Projects STRLCPY param-miner Commits 15c864e2
🤬
  • albinowaxUtils-all.jar
    Binary file.
  • ■ ■ ■ ■ ■ ■
    src/burp/BurpExtender.java
    skipped 34 lines
    35 35   new Utilities(callbacks, new HashMap<>(), name);
    36 36   
    37 37   // config only (currently param-guess displays everything)
    38  - configSettings.register("Add 'fcbz' cachebuster", false, "blah");
    39  - configSettings.register("Add dynamic cachebuster", false);
    40  - configSettings.register("Add header cachebuster", false);
    41  - configSettings.register("learn observed words", false);
    42  - configSettings.register("enable auto-mine", false);
    43  - configSettings.register("auto-mine headers", false);
    44  - configSettings.register("auto-mine cookies", false);
    45  - configSettings.register("auto-mine params", false);
    46  - configSettings.register("auto-nest params", false);
     38 + configSettings.register("Add 'fcbz' cachebuster", false, "Add a static cache-buster to all outbound requests, to avoid manual cache poisoning probes affecting other users");
     39 + configSettings.register("Add dynamic cachebuster", false, "Add a dynamic cache-buster to all requests, to avoid seeing cached responses");
     40 + //configSettings.register("Add header cachebuster", false);
     41 + configSettings.register("learn observed words", false, "During Burp's passive scanning, record all words seen in the response and use them when guessing parameters. ");
     42 + configSettings.register("enable auto-mine", false, "Automatically launch param guessing attacks on traffic as it passes through the proxy");
     43 + configSettings.register("auto-mine headers", false, "When auto-mining proxied traffic, guess headers");
     44 + configSettings.register("auto-mine cookies", false, "When auto-mining proxied traffic, guess cookies);
     45 + configSettings.register("auto-mine params", false, "When auto-mining proxied traffic, guess parameters);
     46 + configSettings.register("auto-nest params", false, "When guessing parameters in JSON, attempt to guess deeper in nested structures. Might not work.");
    47 47   
    48 48   // param-guess only
    49 49   //guessSettings.importSettings(globalSettings);
    50 50   guessSettings.register("learn observed words", false);
    51  - guessSettings.register("skip boring words", true);
    52  - guessSettings.register("only report unique params", false);
    53  - guessSettings.register("response", true);
    54  - guessSettings.register("request", true);
    55  - guessSettings.register("use basic wordlist", true);
    56  - guessSettings.register("use bonus wordlist", false);
    57  - guessSettings.register("use assetnote params", false);
    58  - guessSettings.register("use custom wordlist", false);
    59  - guessSettings.register("custom wordlist path", "/usr/share/dict/words");
    60  - guessSettings.register("bruteforce", false);
    61  - guessSettings.register("skip uncacheable", false);
    62  - guessSettings.register("dynamic keyload", false);
     51 + guessSettings.register("skip boring words", true, "When mining headers, don't check for well known and typically not very exciting headers");
     52 + guessSettings.register("only report unique params", false, "Only report a parameter with a given name once, regardless of how many endpoints are scanned");
     53 + guessSettings.register("response", true, "Extract words from the target request, and use these to guess params");
     54 + guessSettings.register("request", true, "Extract words from the target response, and use these to guess params. Highly recommended.");
     55 + guessSettings.register("use basic wordlist", true, "When guessing params, use the core wordlist");
     56 + guessSettings.register("use bonus wordlist", false, "When guessing params, also use a generic wordlist");
     57 + guessSettings.register("use assetnote params", false, "When guessing params, use the assetnote wordlist");
     58 + guessSettings.register("use custom wordlist", false, "Load a custom wordlist from the configured path");
     59 + guessSettings.register("custom wordlist path", "/usr/share/dict/words", "Load a custom wordlist from the configured path");
     60 + guessSettings.register("bruteforce", false, "When all the wordlist have run out, switch to guessing params with a never-ending pure bruteforce attack.");
     61 + guessSettings.register("skip uncacheable", false, "Refuse to guess params on responses that aren't cacheable?");
     62 + guessSettings.register("dynamic keyload", false, "When guessing params, extract words from every observed response. This is very powerful and quite buggy.");
    63 63   guessSettings.register("max one per host", false);
    64 64   guessSettings.register("max one per host+status", false);
    65 65   guessSettings.register("probe identified params", true);
    skipped 531 lines
Please wait...
Page is in error, reload to recover