Skip to content
/ collaborator-everywhere Public

A Burp Suite Pro extension which augments your proxy traffic by injecting non-invasive headers designed to reveal backend systems by causing pingbacks to Burp Collaborator

417 stars 97 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

PortSwigger/collaborator-everywhere

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

35 Commits
gradle/wrapper
gradle/wrapper
 
 
resources
resources
 
 
src/burp
src/burp
 
 
.gitignore
.gitignore
 
 
BappDescription.html
BappDescription.html
 
 
BappManifest.bmf
BappManifest.bmf
 
 
README.md
README.md
 
 
build.gradle
build.gradle
 
 
gradlew
gradlew
 
 
gradlew.bat
gradlew.bat
 
 
settings.gradle
settings.gradle
 
 

Repository files navigation

This is a Burp Suite Pro extension which augments your in-scope proxy traffic by injecting non-invasive headers designed to reveal backend systems by causing pingbacks to Burp Collaborator.

To use it, simply install it and browse the target website. Findings will be presented in the 'Issues' tab. You can easily customise injected payloads by editing /resources/injections

For further information, please refer to the whitepaper at https://portswigger.net/research/cracking-the-lens-targeting-https-hidden-attack-surface

About

A Burp Suite Pro extension which augments your proxy traffic by injecting non-invasive headers designed to reveal backend systems by causing pingbacks to Burp Collaborator

Resources

Readme
Activity
Custom properties

Stars

417 stars

Watchers

21 watching

Forks

97 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 6

Languages