【插件类型】
• Extension - 通用扩展
• Intruder Payload Generator
• Session Handling Action
• Custom Editor Tab
【开发环境】
• Jython环境配置
• Burp API文档
• IDE调试设置
【示例代码】
```python
from burp import IBurpExtender, IHttpListener
class BurpExtender(IBurpExtender, IHttpListener):
def registerExtenderCallbacks(self, callbacks):
self._callbacks = callbacks
self._helpers = callbacks.getHelpers()
callbacks.setExtensionName("My First Plugin")
callbacks.registerHttpListener(self)
def processHttpMessage(self, toolFlag, messageIsRequest, messageInfo):
if messageIsRequest:
request = messageInfo.getRequest()
analyzedRequest = self._helpers.analyzeRequest(request)
headers = analyzedRequest.getHeaders()
# 处理请求...
```
【实用插件】
• Logger++ - 增强日志
• Autorize - 权限测试
• Turbo Intruder - 高速爆破
• Param Miner - 参数发现
<hr>
<p><small>文章来源: <a href="https://hackerhub.tech/article/10" target="_blank">https://hackerhub.tech/article/10</a></small></p>
Python编写Burp Suite插件入门
admin
暂无简介
评论 (0)