Skip to content
This repository has been archived by the owner on Oct 30, 2020. It is now read-only.
/ sometime Public archive

A BurpSuite plugin to detect Same Origin Method Execution vulnerabilities

License

Notifications You must be signed in to change notification settings

LinkedInAttic/sometime

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

8 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

#SOMEtime

SOMEtime is a passive plugin for the security scanner BurpSuite which will monitor HTTP Request and Responses to determine if a webpage is vulnerable to Same Origin Method Execution.

For more details on Same Origin Method Execution see Ben Hayak's talk or our post on LinkedIn

##How To Use - Burp Pro Passive Scanner Plugin

  1. Clone the repository
  2. Build the code with Maven
$ mvn compile && mvn package
  1. Load Burp Suite Professional
  2. From the Extender tab in Burp Suite, add sometime-0.0.1-SNAPSHOT-jar-with-dependencies.jar as a standard Java-based Burp Extension
  3. Enable Burp Scanner Passive Scanning
  4. Browse your target web application. All requests and responses will be tested for Same Origin Method Execution

##Example There is a directory included in this repository containing proof-of-concept code which showcases the vulnerability. To see the vulnerability, first add 'attacker.com' and 'victim.com' to point to your webserver in '/etc/hosts'. Then, navigate to 'main.html' where the exploit should run. If all works correctly, then there should be an alert pop-up on victim.com, displaying Javascript execution.

About

A BurpSuite plugin to detect Same Origin Method Execution vulnerabilities

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Contributors 4

  •  
  •  
  •  
  •  

Languages