forked from forced-request/wXf
-
Notifications
You must be signed in to change notification settings - Fork 0
buby keyword search send
cktricky edited this page Jun 3, 2011
·
4 revisions
Ken Johnson [CKTRICKY]
Searches Burp's proxy history looking for parameters that meet keyword searches (keywords are listed in the LFILE). When found, sends to repeater and intruder and then alerts the user of the activity.
None
LFILE wordlists/buby/keywords.txt true Directory Traversal Strings File
RURL http://www.example.com true Enter the remote url value
RURL -- When the search occurs, it will only return keywords found in parameters from this site or RURL.
LFILE -- This is the keyword list you'd prefer to use.
I'd like to search thru Burp's proxy history for requests that have parameters in the query that match my keyword list. While I could use the default list provided by wXf, I have my own list. I'll place that list under the datum/wordlists/buby directory for easy retrieval. Type reload lfiles
and choose my file. The name of my keyword file is my_keywordlist.txt
set LFILE wordlists/buby/my_keywordlist.txt
set RURL http://www.example.com
run