Automatically change value of request parameter
- Go to Proxy -> Options
- Click Add under Match and Replace
- Specify the value to match and the value to replace, such as:
Match:
uid=boband Replace with:uid=evilbob - This can be done with regex if you’d like, for example:
Match:
^Host: foo.example.org$and Replace with:bar.example.orgto rewrite the host header. - Feel free to add a Comment: to lend it some context.
Intruder
Extracting useful info from responses
- Run your attack
- Find stuff you want to grep out
- Click Options
- Go to Grep - Extract
- Click Add
- Search for the item you want to grep out, click the
>to highlight it - Make sure the Start after expression and End at delimiter match a pattern that will consistently get you the data you want
- Click OK
- Clear out the other columns you’ll see by clicking the Clear button under Grep - Match
- Click the Results tab, observe the item you wanted to grep as a column
Export output to excel
- Click Save -> Results table
- Specify the columns that you want in the document, and click Save
Setting proxy for specific sites
If you’re behind a proxy and having a lot of wait time when you navigate a site that is using an external resource like fonts.googleapis.com:
- Click Project options
- Click Add under Upstream Proxy Servers
- Set Destination host to fonts.googleapis.com
- Set Proxy host to your internal proxy
- Set Proxy port to your internal proxy port
- If there are authentication settings for your proxy, be sure to set those too
- Click OK when done
Stop detectportal requests
This is a firefox specific tip.
- Navigate to about:config
- Set the value of
network.captive-portal-service.enabledtofalse.
Resource: https://twitter.com/0xValkyrie/status/1166052798754185221?s=20