In this post we present the new version of the Burp Suite extension EsPReSSO - Extension for Processing and Recognition of Single Sign-On Protocols. A DTD attacker was implemented on SAML services that was based on the DTD Cheat Sheet by the Chair for Network and Data Security (https://web-in-security.blogspot.de/2016/03/xxe-cheat-sheet.html). In addition, many fixes were added and a new SAML editor was merged. You can find the newest version release here: https://github.com/RUB-NDS/BurpSSOExtension/releases/tag/v3.1
New SAML editor
Before the new release, EsPReSSO had a simple SAML editor where the decoded SAML messages could be modified by the user. We extended the SAML editor so that the user has the possibility to define the encoding of the SAML message and to select their HTTP binding (HTTP-GET or HTTP-POST). |
| Redesigned SAML Encoder/Decoder |
Enhancement of the SAML attacker
XML Signature Wrapping and XML Signature Faking attacks have already been part of the previous EsPReSSO version. Now the user can also perform DTD attacks! The user can select from 18 different attack vectors and manually refine them all before applying the change to the original message. Additional attack vectors can also be added by extending the XML config file of the DTD attacker.The DTD attacker can also be started in a fully automated mode. This functionality is integrated in the BurpSuite Intruder.
 |
| DTD Attacker for SAML messages |
Supporting further attacks
We implemented a CertificateViewer which extracts and decodes the certificates contained within the SAML tokens. In addition, a user interface for executing SignatureExclusion attack on SAML has been implemented.Additional functions will follow in later versions.
Currently we are working on XML Encryption attacks.This is a combined work from Nurullah Erinola, Nils Engelbertz, David Herring, Juraj Somorovsky, and Vladislav Mladenov.
The research was supported by the European Commission through the FutureTrust project (grant 700542-Future-Trust-H2020-DS-2015-1).
Continue reading
- Ethical Hacker Tools
- Hack And Tools
- How To Hack
- Pentest Tools Port Scanner
- Beginner Hacker Tools
- Hack Tools For Games
- Hacking Tools And Software
- Hack App
- Hacking Tools Free Download
- Hacking Tools For Beginners
- Pentest Tools Website Vulnerability
- Hacker Tools List
- Pentest Tools
- Pentest Tools Website Vulnerability
- Hack Tools Online
- Hacking Tools For Windows Free Download
- Hack Tools For Pc
- Hacker Tools Windows
- Hacking Apps
- Hacker Tools For Mac
- Tools For Hacker
- Hack Rom Tools
- Hacking Tools For Windows
- Hacker Tools 2019
- Hacking Tools Windows
- Hacker Tools Mac
- Hacker Tools 2019
- Hack App
- Pentest Tools Windows
- Hacking Tools For Windows
- Hacker Tools Mac
- Hacker Tools Linux
- Hack Tools For Ubuntu
- Blackhat Hacker Tools
- Pentest Tools Website Vulnerability
- Termux Hacking Tools 2019
- Hacker Tools List
- Hack Tools Download
- Hacking Tools For Mac
- Hack Tool Apk No Root
- Hacking Tools For Mac
- Hacking Tools For Windows
- Nsa Hack Tools Download
- How To Hack
- Hacker Tools Github
- Pentest Tools List
- How To Install Pentest Tools In Ubuntu
- Hacker Tools Apk
- Hacker Tool Kit
- Pentest Box Tools Download
- Pentest Tools Nmap
- Hacking Tools For Mac
- Pentest Tools Apk
- Termux Hacking Tools 2019
- Pentest Tools For Mac
- Hack And Tools
- Hacker Tools For Windows
- Hak5 Tools
- Ethical Hacker Tools
- Hacker Tools Apk Download
- Best Hacking Tools 2020
- Pentest Tools Find Subdomains
- How To Install Pentest Tools In Ubuntu
- Tools For Hacker
- Hacker Security Tools
- Hacker Tools Software
- Hack Tools Pc
- Pentest Tools Windows
- Hacking Tools Usb
- Best Hacking Tools 2019
- Hacker Tools Linux
- Hacking Tools Download
- Hacking Tools Windows 10
- Hacking Tools Free Download
- Pentest Tools Android
- Hacker Tools Free
- Pentest Tools Android
- Hacking Tools For Windows Free Download
- Hacking Tools For Windows Free Download
- Hacker Tools Online
- Pentest Tools Bluekeep
- New Hack Tools
- Hak5 Tools
- Pentest Tools Linux
0 件のコメント:
コメントを投稿