Modifying and Building Burp Extensions

by DG under appsec, burp
UPDATE James Kettle (@albinowax) has released an updated method for modifying and building burp extensions using gradle. It is the recommended way of building custom modifications to extensions. The article can be found here: https://portswigger.net/research/adapting-burp-extensions-for-tailored-pentesting. The content below is being kept for reference sake. Context Last week James Kettle (@albinowax) released a blog post/whitepaper on the PortSwigger blog titled Cracking the Lens: Targeting HTTP's Hidden Attack-Surface. In short, it's about probing hidden systems that make up modern day application infrastructures by submitting intentionally malformed requests. If you haven't read it yet, I would recommend you
Read More