readme updated

README.md

@@ -1,21 +1,21 @@
 # JDSer-DComp
-A Burp Extender plugin that will allow you to tamper with requests containing compressed, serialized java objects. Useful in case you want to pen-test a Java _thick_ (or _fat_) client application.
 
-This was based on Jon Murray's [JDSer-ngng](https://github.com/nccgroup/JDSer-ngng), which in turn was based on parts from [khai-tran](https://github.com/khai-tran/BurpJDSer) and [IOActives](https://github.com/IOActive/BurpJDSer-ng) extensions.  
-(Excerpts from this README are borrowed from their README as well, so thanks!)
+A Burp Extender plugin that will allow you to tamper with requests containing compressed, serialized Java objects. Useful in case you want to pen-test a Java _thick_ (or _fat_) client application.
 
 ## Features
-This extender will decompress and deserialize a request, let you modify it, and then reserialize and recompress it before sending it on.  
 
-The deserialized Java objects are encoded in XML using the [XStream](http://xstream.codehaus.org/) library. 
+This extender will decompress and deserialize a request, let you modify it, and then reserialize and recompress it before sending it on.
 
-The compression format currently supported is **zlib**. 
+The deserialized Java objects are encoded in XML using the [XStream](http://xstream.codehaus.org/) library.
+
+The compression format currently supported is **zlib**.
 
 It works well with Burp's _Proxy_, _History_, _Intruder_ and _Repeater_ tools, while it only partially supports _Scanner_.
 
 It also has the ability to use SQLMap: Copy and paste the output of the "send deserialized to intruder" into a file, and then "sqlmap.py -r --proxy "http://burp:port".
 
 ## Usage
+
 1) Find and download client *.jar files
 
 Few methods to locate the required jar files containing the classes we'll be deserializing:
@@ -39,12 +39,16 @@ Please note that if you mess up the XML schema or edit an object in a funny way,
 JARs reload when the extender is loaded. Everything is written to stdout (so run java -jar burpsuite.jar) and look for error messages/problems there.
 
 ## To do
+
 This plugin is at a somewhat primitive state, and there are many things left to be done, like:
+
 * Supporting more compression algorithms (maybe with auto-detection)
-* Better support for Burp’s Scanner 
+* Better support for Burp’s Scanner
 * Better exception handling
-* Support for applications that utilize XML signing  
+* Support for applications that utilize XML signing
 
-Stay tuned!
+## Credits
 
-Cheers.
+* [JDSer-ngng](https://github.com/nccgroup/JDSer-ngng)
+* [khai-tran](https://github.com/khai-tran/BurpJDSer)
+* [IOActives](https://github.com/IOActive/BurpJDSer-ng)