A Burp extension to enable modification of FIX messages when relayed from MitM_Relay
https://labs.withsecure.com/publications/a-bit-of-a-fixer-upper-testing-fix-backed-applications
Can be manually installed by cloning this repository and then from within Burp Suite:
- selecting the Extender tab
- clicking the Add button
- changing the Extension type to Python
- selecting fixerupper.py as the extension file.
The extension requires Burp Suite to be configured to use Jython. For installation please see: https://portswigger.net/burp/help/extender.html#options_pythonenv
FixerUpper is designed and intended to help with interception and modification of the TCP-based FIX protocol. As such, it is expected to be used with a TCP relay tool like MitM_Relay.py: https://github.com/jrmdev/mitm_relay
After adding the extension you can define regular expressions for required HTTP headers, as well as the request body structure:
With this done, you will then get a "Fixer Upper" tab in the request window: