@dnet dnet released this Jan 20, 2017 · 12 commits to master since this release

Assets 3

Improvements w.r.t ImageTragick detection:

  • replaced copy-pasted Unicode chars with ASCII
  • added support for Burp Collaborator

@dnet dnet released this May 13, 2016 · 16 commits to master since this release

Assets 4

This version includes experimental ImageTragick (CVE-2016–3714) detection.

The Java 1.6 version should be used for JVM versions 6 and 7, as they cannot load the JAR built for JVM 8.

@dnet dnet released this Mar 18, 2016 · 18 commits to master since this release

Assets 3

This version improves performance and highlights the affected parameters.

@dnet dnet released this Feb 10, 2016 · 24 commits to master since this release

Assets 3

This version detects if the width and height of a JPEG/PNG/GIF response is included in the request parameters.