forked from PortSwigger/request-randomizer
-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathBappDescription.html
More file actions
15 lines (15 loc) · 780 Bytes
/
BappDescription.html
File metadata and controls
15 lines (15 loc) · 780 Bytes
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
<p>This extension registers a session handling rule which places a random value
into a specified location within requests.</p>
<p>To use:</p>
<ul>
<li>Load the extension into Burp.</li>
<li>In the session handling options, create a rule which invokes the
Randomizer action that is registered by the extension, and select a suitable
scope for the rule.</li>
<li>Place the string #RANDOM#, #RANDOMNUM# or deadbeef-1337-1337-1337-deadbeeeeeef into the relevant request at the location
where a random value, random number or UUIDv4 string is required.</li>
<li>Let Burp operate on the request in the normal way (via Scanner,
Intruder, etc.).</li>
<li>The extension will replace the string placeholder with a random value or
an UUIDv4 string in each request.</li>
</ul>