Robert Wiggins
Robert Wiggins
Hey, I was looking to use this for decoding some base64 strings inside json and it did not see to find the following when using refang. ``` }, "data": {...
``` Traceback (most recent call last): File "/Users/rwiggins/.BurpSuite/bapps/b2244cbb6953442cb3c82fa0a0d908fa/UploadScanner.py", line 982, in doActiveScan self.do_checks(injector) File "/Users/rwiggins/.BurpSuite/bapps/b2244cbb6953442cb3c82fa0a0d908fa/UploadScanner.py", line 1089, in do_checks self._php_rce(injector) File "/Users/rwiggins/.BurpSuite/bapps/b2244cbb6953442cb3c82fa0a0d908fa/UploadScanner.py", line 1089, in do_checks self._php_rce(injector) File "/Users/rwiggins/.BurpSuite/bapps/b2244cbb6953442cb3c82fa0a0d908fa/UploadScanner.py", line...
Added write to file when it finds a vun host. writes to vun.txt #### Card #### Details
``` Traceback (most recent call last): File "/Users/rwiggins/.BurpSuite/bapps/b2244cbb6953442cb3c82fa0a0d908fa/UploadScanner.py", line 982, in doActiveScan self.do_checks(injector) File "/Users/rwiggins/.BurpSuite/bapps/b2244cbb6953442cb3c82fa0a0d908fa/UploadScanner.py", line 1074, in do_checks colab_tests.extend(self._magick(injector, burp_colab)) File "/Users/rwiggins/.BurpSuite/bapps/b2244cbb6953442cb3c82fa0a0d908fa/UploadScanner.py", line 1074, in do_checks colab_tests.extend(self._magick(injector, burp_colab)) File...
Exposed Secrets = RCE
Built a fresh jar via a docker alpine image and got this, on burp Version 2024.9.5 (2024.9.5) ``` java.lang.RuntimeException: Extension generated task deleted at burp.Zyzp.ZS(Unknown Source) at burp.Zkx.makeHttpRequest(Unknown Source) at...