Page 196 - Hands-On Bug Hunting for Penetration Testers
P. 196
Other Tools Chapter 11
3FUJSF KT
Remember when we built a small set of scripts around Retire.js to check client-side
JavaScript for vulnerabilities in $IBQUFS , Preparing for an Engagement, There's also a Burp
extension that allows you to do just that within a Burp testing session. If Burp is a large part
of your workflow, it might be worth considering.
1ZUIPO 4DSJQUFS
The Python scripter extensions execute Python code on every Burp HTTP request. This can
make it much easier to graft on extra functionality than if you are trying to add Java code or
your own extension directly.
#VSQ /PUFT
Considering documentation's importance in writing great submission reports, tools such as
Burp Notes, which can be configured to save HTTP requests and other data from different
Burp tools, can tighten your workflow, eliminating manual copy and pasting.
#VSQ 3&45 "1*
The Burp REST API plugin (IUUQT HJUIVC DPN WNXBSF CVSQ SFTU BQJ) allows you to
run your Burp instance within a wrapper that makes its chief functionality available
through a RESTful API. This is obviously a great addition if you're looking to integrate
Burp with your existing automation.
4BB4 4QFDJ`D &YUFOTJPOT
The aforementioned extensions are mostly just standalone additions to the existing Burp
workflow. But Burp also supports extensions that act as bridges to other security toolsets.
Faraday (IUUQT XXX GBSBEBZTFD DPN ) describes itself as a multi-user, collaborative
pentesting environment that a security team can use to share scope, target data, discoveries,
and other engagement information. There's also tool-specific bridges, such as SQLiPy,
which is an extension for kicking off TRMNBQ scans from within Burp.
[ 181 ]
