2021-06-10 22:59:27 +08:00
|
|
|
|
package burp;
|
|
|
|
|
|
|
|
|
|
|
|
import burp.action.*;
|
|
|
|
|
|
import burp.ui.MainUI;
|
|
|
|
|
|
|
2022-04-08 17:21:40 +08:00
|
|
|
|
import java.util.Map;
|
2021-06-10 22:59:27 +08:00
|
|
|
|
import javax.swing.*;
|
|
|
|
|
|
import java.awt.*;
|
2021-09-07 22:09:42 +08:00
|
|
|
|
import java.nio.charset.StandardCharsets;
|
2021-06-10 22:59:27 +08:00
|
|
|
|
import java.io.PrintWriter;
|
2021-10-21 23:42:15 +08:00
|
|
|
|
import java.util.ArrayList;
|
|
|
|
|
|
import java.util.List;
|
2022-04-21 10:50:10 +08:00
|
|
|
|
import javax.swing.event.ChangeEvent;
|
|
|
|
|
|
import javax.swing.event.ChangeListener;
|
2021-06-10 22:59:27 +08:00
|
|
|
|
|
|
|
|
|
|
/*
|
2022-04-08 17:21:40 +08:00
|
|
|
|
* @author EvilChen & 0chencc
|
2021-06-10 22:59:27 +08:00
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
|
|
public class BurpExtender implements IBurpExtender, IHttpListener, IMessageEditorTabFactory, ITab {
|
2021-09-07 22:09:42 +08:00
|
|
|
|
private final MainUI main = new MainUI();
|
2021-06-10 22:59:27 +08:00
|
|
|
|
private static PrintWriter stdout;
|
|
|
|
|
|
private IBurpExtenderCallbacks callbacks;
|
|
|
|
|
|
private static IExtensionHelpers helpers;
|
|
|
|
|
|
GetColorKey gck = new GetColorKey();
|
|
|
|
|
|
UpgradeColor uc = new UpgradeColor();
|
2021-10-21 23:42:15 +08:00
|
|
|
|
ProcessMessage pm = new ProcessMessage();
|
2021-06-10 22:59:27 +08:00
|
|
|
|
|
|
|
|
|
|
@Override
|
|
|
|
|
|
public void registerExtenderCallbacks(final IBurpExtenderCallbacks callbacks)
|
|
|
|
|
|
{
|
|
|
|
|
|
this.callbacks = callbacks;
|
|
|
|
|
|
BurpExtender.helpers = callbacks.getHelpers();
|
|
|
|
|
|
|
2022-05-04 22:47:28 +08:00
|
|
|
|
String version = "2.2.2";
|
2021-06-10 22:59:27 +08:00
|
|
|
|
callbacks.setExtensionName(String.format("HaE (%s) - Highlighter and Extractor", version));
|
|
|
|
|
|
// 定义输出
|
|
|
|
|
|
stdout = new PrintWriter(callbacks.getStdout(), true);
|
|
|
|
|
|
stdout.println("@Core Author: EvilChen");
|
2022-02-21 09:31:03 +08:00
|
|
|
|
stdout.println("@Architecture Author: 0chencc");
|
2021-06-10 22:59:27 +08:00
|
|
|
|
stdout.println("@Github: https://github.com/gh0stkey/HaE");
|
|
|
|
|
|
// UI
|
2021-09-07 22:09:42 +08:00
|
|
|
|
SwingUtilities.invokeLater(this::initialize);
|
2021-06-10 22:59:27 +08:00
|
|
|
|
|
|
|
|
|
|
callbacks.registerHttpListener(BurpExtender.this);
|
|
|
|
|
|
callbacks.registerMessageEditorTabFactory(BurpExtender.this);
|
|
|
|
|
|
}
|
2022-01-11 14:46:25 +08:00
|
|
|
|
|
2021-06-10 22:59:27 +08:00
|
|
|
|
private void initialize(){
|
|
|
|
|
|
callbacks.customizeUiComponent(main);
|
|
|
|
|
|
callbacks.addSuiteTab(BurpExtender.this);
|
|
|
|
|
|
}
|
2022-01-11 14:46:25 +08:00
|
|
|
|
|
2021-06-10 22:59:27 +08:00
|
|
|
|
@Override
|
|
|
|
|
|
public String getTabCaption(){
|
|
|
|
|
|
return "HaE";
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
@Override
|
|
|
|
|
|
public Component getUiComponent() {
|
|
|
|
|
|
return main;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
|
* 使用processHttpMessage用来做Highlighter
|
|
|
|
|
|
*/
|
|
|
|
|
|
@Override
|
|
|
|
|
|
public void processHttpMessage(int toolFlag, boolean messageIsRequest, IHttpRequestResponse messageInfo) {
|
|
|
|
|
|
// 判断是否是响应,且该代码作用域为:REPEATER、INTRUDER、PROXY(分别对应toolFlag 64、32、4)
|
|
|
|
|
|
if (toolFlag == 64 || toolFlag == 32 || toolFlag == 4) {
|
2021-10-21 23:42:15 +08:00
|
|
|
|
byte[] content;
|
2021-06-10 22:59:27 +08:00
|
|
|
|
if (messageIsRequest) {
|
2021-10-21 23:42:15 +08:00
|
|
|
|
content = messageInfo.getRequest();
|
2021-06-10 22:59:27 +08:00
|
|
|
|
} else {
|
2021-10-21 23:42:15 +08:00
|
|
|
|
content = messageInfo.getResponse();
|
2021-06-10 22:59:27 +08:00
|
|
|
|
}
|
2022-01-11 14:46:25 +08:00
|
|
|
|
|
2021-10-21 23:42:15 +08:00
|
|
|
|
String c = new String(content, StandardCharsets.UTF_8).intern();
|
2022-04-08 17:21:40 +08:00
|
|
|
|
List<Map<String, String>> result = pm.processMessageByContent(helpers, content, messageIsRequest, true);
|
2021-10-21 23:42:15 +08:00
|
|
|
|
if (result != null && !result.isEmpty() && result.size() > 0) {
|
|
|
|
|
|
String originalColor = messageInfo.getHighlight();
|
|
|
|
|
|
String originalComment = messageInfo.getComment();
|
|
|
|
|
|
List<String> colorList = new ArrayList<>();
|
|
|
|
|
|
if (originalColor != null) {
|
|
|
|
|
|
colorList.add(originalColor);
|
|
|
|
|
|
}
|
2022-04-08 17:21:40 +08:00
|
|
|
|
colorList.add(result.get(0).get("color"));
|
2021-09-07 22:09:42 +08:00
|
|
|
|
String color = uc.getEndColor(gck.getColorKeys(colorList));
|
2021-10-21 23:42:15 +08:00
|
|
|
|
|
2021-06-10 22:59:27 +08:00
|
|
|
|
messageInfo.setHighlight(color);
|
2022-04-08 17:21:40 +08:00
|
|
|
|
String addComment = String.join(", ", result.get(1).get("comment"));
|
2021-10-21 23:42:15 +08:00
|
|
|
|
String resComment = originalComment != null ? String.format("%s, %s", originalComment, addComment) : addComment;
|
2021-09-12 15:23:54 +08:00
|
|
|
|
|
2021-10-21 23:42:15 +08:00
|
|
|
|
messageInfo.setComment(resComment);
|
2021-09-12 15:23:54 +08:00
|
|
|
|
}
|
2021-06-10 22:59:27 +08:00
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
class MarkInfoTab implements IMessageEditorTab {
|
2022-04-08 17:21:40 +08:00
|
|
|
|
private final JTabbedPane jTabbedPane = new JTabbedPane();
|
2022-04-21 10:50:10 +08:00
|
|
|
|
private JTable jTable = new JTable();
|
2021-06-10 22:59:27 +08:00
|
|
|
|
private final IMessageEditorController controller;
|
2022-04-08 17:21:40 +08:00
|
|
|
|
private Map<String, String> extractRequestMap;
|
|
|
|
|
|
private Map<String, String> extractResponseMap;
|
2021-06-10 22:59:27 +08:00
|
|
|
|
|
|
|
|
|
|
public MarkInfoTab(IMessageEditorController controller, boolean editable) {
|
|
|
|
|
|
this.controller = controller;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
@Override
|
|
|
|
|
|
public String getTabCaption() {
|
|
|
|
|
|
return "MarkInfo";
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
@Override
|
|
|
|
|
|
public Component getUiComponent() {
|
2022-04-21 10:50:10 +08:00
|
|
|
|
jTabbedPane.addChangeListener(new ChangeListener() {
|
|
|
|
|
|
@Override
|
|
|
|
|
|
public void stateChanged(ChangeEvent arg0) {
|
|
|
|
|
|
jTable = (JTable) ((JScrollPane)jTabbedPane.getSelectedComponent()).getViewport().getView();
|
|
|
|
|
|
}
|
|
|
|
|
|
});
|
2022-04-08 17:21:40 +08:00
|
|
|
|
return this.jTabbedPane;
|
2021-06-10 22:59:27 +08:00
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
@Override
|
|
|
|
|
|
public boolean isEnabled(byte[] content, boolean isRequest) {
|
2021-10-21 23:42:15 +08:00
|
|
|
|
String c = new String(content, StandardCharsets.UTF_8).intern();
|
2022-04-08 17:21:40 +08:00
|
|
|
|
List<Map<String, String>> result = pm.processMessageByContent(helpers, content, isRequest, false);
|
2021-10-21 23:42:15 +08:00
|
|
|
|
if (result != null && !result.isEmpty()) {
|
2022-04-08 17:21:40 +08:00
|
|
|
|
Map<String, String> dataMap = result.get(0);
|
2021-10-21 23:42:15 +08:00
|
|
|
|
if (isRequest) {
|
2022-04-08 17:21:40 +08:00
|
|
|
|
extractRequestMap = dataMap;
|
2021-10-21 23:42:15 +08:00
|
|
|
|
} else {
|
2022-04-08 17:21:40 +08:00
|
|
|
|
extractResponseMap = dataMap;
|
2021-06-10 22:59:27 +08:00
|
|
|
|
}
|
2021-10-21 23:42:15 +08:00
|
|
|
|
return true;
|
2021-06-10 22:59:27 +08:00
|
|
|
|
}
|
|
|
|
|
|
return false;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
@Override
|
|
|
|
|
|
public byte[] getMessage() {
|
2022-04-21 10:50:10 +08:00
|
|
|
|
return null;
|
2021-06-10 22:59:27 +08:00
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
@Override
|
|
|
|
|
|
public boolean isModified() {
|
2022-04-08 17:21:40 +08:00
|
|
|
|
return false;
|
2021-06-10 22:59:27 +08:00
|
|
|
|
}
|
|
|
|
|
|
|
2022-05-04 22:47:28 +08:00
|
|
|
|
/*
|
|
|
|
|
|
* 快捷键复制功能
|
|
|
|
|
|
*/
|
2021-06-10 22:59:27 +08:00
|
|
|
|
@Override
|
|
|
|
|
|
public byte[] getSelectedData() {
|
2022-04-21 10:50:10 +08:00
|
|
|
|
int[] selectRows = jTable.getSelectedRows();
|
|
|
|
|
|
StringBuilder selectData = new StringBuilder();
|
|
|
|
|
|
for (int row : selectRows) {
|
|
|
|
|
|
selectData.append(jTable.getValueAt(row, 0).toString()).append("\n");
|
|
|
|
|
|
}
|
|
|
|
|
|
return helpers.stringToBytes(selectData.toString());
|
2021-06-10 22:59:27 +08:00
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
|
* 使用setMessage用来做Extractor
|
|
|
|
|
|
*/
|
|
|
|
|
|
@Override
|
|
|
|
|
|
public void setMessage(byte[] content, boolean isRequest) {
|
2021-09-07 22:09:42 +08:00
|
|
|
|
String c = new String(content, StandardCharsets.UTF_8).intern();
|
2021-06-10 22:59:27 +08:00
|
|
|
|
if (content.length > 0) {
|
|
|
|
|
|
if (isRequest) {
|
2022-04-08 17:21:40 +08:00
|
|
|
|
makeTable(extractRequestMap);
|
2021-06-10 22:59:27 +08:00
|
|
|
|
} else {
|
2022-04-08 17:21:40 +08:00
|
|
|
|
makeTable(extractResponseMap);
|
2021-06-10 22:59:27 +08:00
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
2022-04-08 17:21:40 +08:00
|
|
|
|
|
2022-05-04 22:47:28 +08:00
|
|
|
|
/*
|
|
|
|
|
|
* 创建MarkInfo表单
|
|
|
|
|
|
*/
|
2022-04-08 17:21:40 +08:00
|
|
|
|
public void makeTable(Map<String, String> dataMap) {
|
|
|
|
|
|
dataMap.keySet().forEach(i->{
|
|
|
|
|
|
String[] extractData = dataMap.get(i).split("\n");
|
|
|
|
|
|
Object[][] data = new Object[extractData.length][1];
|
|
|
|
|
|
for (int x = 0; x < extractData.length; x++) {
|
|
|
|
|
|
data[x][0] = extractData[x];
|
|
|
|
|
|
}
|
2022-05-04 22:47:28 +08:00
|
|
|
|
int indexOfTab = this.jTabbedPane.indexOfTab(i);
|
|
|
|
|
|
JScrollPane jScrollPane = new JScrollPane(new JTable(data, new Object[] {"Information"}));
|
2022-05-04 22:48:44 +08:00
|
|
|
|
// 使用removeAll会导致UI出现空白的情况,为了改善用户侧体验,采用remove的方式进行删除
|
2022-05-04 22:47:28 +08:00
|
|
|
|
if (indexOfTab != -1) {
|
|
|
|
|
|
this.jTabbedPane.remove(indexOfTab);
|
|
|
|
|
|
}
|
|
|
|
|
|
this.jTabbedPane.addTab(i, jScrollPane);
|
2022-04-08 17:21:40 +08:00
|
|
|
|
});
|
|
|
|
|
|
}
|
2021-06-10 22:59:27 +08:00
|
|
|
|
}
|
|
|
|
|
|
|
2022-04-08 17:21:40 +08:00
|
|
|
|
|
|
|
|
|
|
|
2021-06-10 22:59:27 +08:00
|
|
|
|
@Override
|
|
|
|
|
|
public IMessageEditorTab createNewInstance(IMessageEditorController controller, boolean editable) {
|
2021-09-07 22:09:42 +08:00
|
|
|
|
return new MarkInfoTab(controller, editable);
|
2021-06-10 22:59:27 +08:00
|
|
|
|
}
|
|
|
|
|
|
}
|
