Skip to content
/ php_array_injection_scanner Public

PHP Array Injection Scanner

1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

b4dpxl/php_array_injection_scanner

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1 Commit
.gitignore
.gitignore
 
 
README.md
README.md
 
 
php_array_injection_scanner.py
php_array_injection_scanner.py
 
 

Repository files navigation

Burp scanner which attempts to discover PHP array injection issues. For each URL or Body parameter (which isn't already an array), it will submit a single value as an array and compare the responses, and also as an array with a second random value.

For example, for:

  • GET /my_page.php?name=fred

It will call:

  • GET /my_page.php?name[]=fred
  • GET /my_page.php?name[]=fred&name[]=<random_string>

It will ignore parameter which are already arrays, including URL encoded versions (e.g. name%5b%5d=fred).

The order of checking is:

  1. Change in status code
  2. Presence of "Array to conversion in"
  3. Straight difference between the response bodies

When doing a straight response body check, it will check if the modified body is the same as a request without the parameter, to try and remove false positives.

About

PHP Array Injection Scanner

Topics

burp-plugin burpsuite

Resources

Readme
Activity

Stars

1 star

Watchers

2 watching

Forks

0 forks
Report repository

Languages