This extension processes and recognizes single sign-on protocols.
- OpenID Connect
- Facebook Connect
- Microsoft Account
- WS-Attacker integration while intercepting SAML messages
- DTD-Attacker integration while intercepting SAML messages
- XML-Encryption-Attacker integration while intercepting SAML messages
- Syntax Highlight
- Highlight SSO messages in proxy window and display the protocol type
- Show all recognized SSO messages in a history tab
- Context menu for 'Analyze SSO Protocol'
- View and edit SAML
- View JSON and JSON Web Token (JWT)
|Author||Tim Guenther, Christian Mainka, Vladislav Mladenov, Nurullah Erinola, Juraj Somorovsky, Nils Engelbe|
|Last updated||24 June 2019|
You can install BApps directly within Burp, via the BApp Store feature in the Burp Extender tool. You can also download them from here, for offline installation into Burp.
|You can view the source code for this BApp by visiting our GitHub page.|
|Follow @BApp_Store on Twitter to receive notifications of all BApp releases and updates.|
Please note that extensions are written by third party users of Burp, and PortSwigger Web Security makes no warranty about their quality or usefulness for any particular purpose.