Tag: Java

• SQLiPy: A SQLMap Plugin for Burp

  I perform quite a few web app assessments throughout the year. Two of the primary tools in my handbag for a web app assessment are Burp Suite Pro and SQLMap. Burp Suite is a great general purpose web app assessment tool, but if you perform web app assessments you probably already know because you are…

  Josh Berry

  September 22, 2014

  Burp, Linux, Penetration Testing, Python, Unix, Windows

  Burp Suite Pro, Java, Jython, Linux, Python, sqlmap, Web App Pentesting, Windows

• Java Fat Client Penetration Testing and JNLP Auto-Downloads

  I was recently asked to perform an application penetration test of a Java based fat client. The application used JNLP and communicated with a backend web service. The steps for this are documented elsewhere, but as a brief guide they require: Loading the JDSer-NG plugin for Burp Configuring Java to proxy through Burp Downloading all…

  Josh Berry

  August 13, 2014

  Burp, Penetration Testing, Python

  Burp Suite Pro, Java, Python