A Burp Suite Pro extension which augments your proxy traffic by injecting non-invasive headers designed to reveal backend systems by causing pingbacks to Burp Collaborator
Switch branches/tags
Nothing to show
Clone or download
Latest commit 80c0764 May 21, 2018

README.md

This is a Burp Suite Pro extension which augments your in-scope proxy traffic by injecting non-invasive headers designed to reveal backend systems by causing pingbacks to Burp Collaborator.

To use it, simply install it and browse the target website. Findings will be presented in the 'Issues' tab. You can easily customise injected payloads by editing /resources/injections

For further information, please refer to the whitepaper at http://blog.portswigger.net/2017/07/cracking-lens-targeting-https-hidden.html