This extension allows encryption and decryption of AES payloads in Burp Intruder and Scanner. The extension registers the following items:
- Two Intruder payload processors, for encrypting and decrypting payloads in Intruder attacks.
- A Scanner insertion point provider. When a request is sent for active scanning, the extension looks in the request's parameters for AES-encrypted payloads that can be decrypted using the current configuration / keys. If it finds any, it creates insertion points to enable scanning inside the AES-encrypted payloads.
|Last updated||28 August 2015|
You can install BApps directly within Burp, via the BApp Store feature in the Burp Extender tool. You can also download them from here, for offline installation into Burp.
|You can view the source code for this BApp by visiting our GitHub page.|
|Follow @BApp_Store on Twitter to receive notifications of all BApp releases and updates.|
Please note that extensions are written by third party users of Burp, and PortSwigger Web Security makes no warranty about their quality or usefulness for any particular purpose.