Support For XXE Attacks In SAML In Our Burp Suite Extension
In this post we present the new version of the Burp Suite extension EsPReSSO - Extension for Processing and Recognition of Single Sign-On Protocols. A DTD attacker was implemented on SAML services that was based on the DTD Cheat Sheet by the Chair for Network and Data Security (https://web-in-security.blogspot.de/2016/03/xxe-cheat-sheet.html). In addition, many fixes were added and a new SAML editor was merged. You can find the newest version release here: https://github.com/RUB-NDS/BurpSSOExtension/releases/tag/v3.1
New SAML editor
Before the new release, EsPReSSO had a simple SAML editor where the decoded SAML messages could be modified by the user. We extended the SAML editor so that the user has the possibility to define the encoding of the SAML message and to select their HTTP binding (HTTP-GET or HTTP-POST). |
| Redesigned SAML Encoder/Decoder |
Enhancement of the SAML attacker
XML Signature Wrapping and XML Signature Faking attacks have already been part of the previous EsPReSSO version. Now the user can also perform DTD attacks! The user can select from 18 different attack vectors and manually refine them all before applying the change to the original message. Additional attack vectors can also be added by extending the XML config file of the DTD attacker.The DTD attacker can also be started in a fully automated mode. This functionality is integrated in the BurpSuite Intruder.
 |
| DTD Attacker for SAML messages |
Supporting further attacks
We implemented a CertificateViewer which extracts and decodes the certificates contained within the SAML tokens. In addition, a user interface for executing SignatureExclusion attack on SAML has been implemented.Additional functions will follow in later versions.
Currently we are working on XML Encryption attacks.This is a combined work from Nurullah Erinola, Nils Engelbertz, David Herring, Juraj Somorovsky, and Vladislav Mladenov.
The research was supported by the European Commission through the FutureTrust project (grant 700542-Future-Trust-H2020-DS-2015-1).
- Hack Tools For Pc
- Hak5 Tools
- Hacking Tools Mac
- Hacking Tools For Windows
- How To Hack
- What Are Hacking Tools
- Hack App
- Pentest Tools Open Source
- Hacking Tools Online
- World No 1 Hacker Software
- Pentest Tools Tcp Port Scanner
- Hacking Tools Free Download
- World No 1 Hacker Software
- Hacking Tools For Games
- Hack Tools Online
- Hacking Tools For Pc
- Install Pentest Tools Ubuntu
- How To Install Pentest Tools In Ubuntu
- Pentest Tools
- Hacking Tools For Mac
- New Hack Tools
- Hack Tools Online
- Pentest Tools Android
- Pentest Tools Port Scanner
- New Hack Tools
- Pentest Tools Tcp Port Scanner
- How To Hack
- Hacking App
- What Are Hacking Tools
- Wifi Hacker Tools For Windows
- Android Hack Tools Github
- Hacking Tools Download
- Beginner Hacker Tools
- Hacker Tools Windows
- Pentest Tools Review
- Hacker Tools Software
- Pentest Tools Find Subdomains
- Hacker Tools 2020
- Pentest Tools Open Source
- Hacker Tools Windows
- Pentest Automation Tools
- Black Hat Hacker Tools
- Hacking Tools Name
- Hacks And Tools
- Easy Hack Tools
- Hacker Tools Windows
- Pentest Tools Open Source
- Hacking Tools Name
- Game Hacking
- Hacking Tools For Windows Free Download
- Hacker
- Pentest Automation Tools
- Physical Pentest Tools
- Pentest Tools Framework
- Github Hacking Tools
- Hack App
- Hacker Tools For Pc
- Hacking Tools Download
- Hacks And Tools
- Hacker Tools Free Download
- Hack Tool Apk
- Nsa Hacker Tools
- Hacker Tools Hardware
- Hacker Tools Hardware
- Hack Tools Online
- Pentest Tools Subdomain
- Hacker Tools Online
- Hack Tools Pc
- Best Hacking Tools 2019
- Underground Hacker Sites
- Hacker Tools Online
- Nsa Hack Tools
- Pentest Tools Windows
- Pentest Tools Port Scanner
- Pentest Tools For Mac
- Hacking Tools For Beginners
- Hacking Tools
- Hacking Apps
- Tools 4 Hack
- Hacking App
- Best Hacking Tools 2019
- Hack Tools
- Pentest Tools For Windows
- Pentest Tools Download
- Github Hacking Tools
- Nsa Hack Tools Download
- Best Hacking Tools 2020
- Pentest Tools Linux
- Hacking Tools Windows 10
- Pentest Tools Linux
- Hacker Tools Mac
- Hacker Tools Free Download
- Hacking App
- Hacker Security Tools
- Hack Tools Pc
- Hacker Security Tools
- Hack Rom Tools
- Hack Tools For Games
- Growth Hacker Tools
- Computer Hacker
- Pentest Tools Online
- Pentest Reporting Tools
- Free Pentest Tools For Windows
- Hacking Tools For Pc
- Hacker Tools Software
- Pentest Tools Download
- Best Pentesting Tools 2018
- Pentest Tools Android
- Nsa Hacker Tools
- Pentest Tools Port Scanner
- Hacks And Tools
- Hacking Tools For Pc
- Best Pentesting Tools 2018
- Hacking Tools Online
- Hack Tools For Games
- Hacker Tools For Pc
- Hacking Tools Mac
- Hacker Techniques Tools And Incident Handling
- Pentest Tools Github
- Pentest Tools Linux
- Hacking Tools For Beginners
- Easy Hack Tools
- Hacking Tools Pc
- Game Hacking
- Hack App
- Pentest Tools Kali Linux
- Free Pentest Tools For Windows
- Hack And Tools
- Pentest Tools Linux
- Hacking Tools Kit
- Pentest Tools Review
- Pentest Tools Bluekeep
- Growth Hacker Tools
- Hack Rom Tools
- Hacker Techniques Tools And Incident Handling
- Hacking Tools Usb
- Hacking Tools For Beginners
- Hacker Tools Software
- Easy Hack Tools
- Hacking Apps
- Hackers Toolbox
- Hack Tools For Mac
- Hack Tools Github
- Hacker Tools Windows
- Hacking Tools For Kali Linux
- Pentest Tools Github
- Best Hacking Tools 2020
- Hacking Tools For Pc
- Hack Tool Apk No Root
- Best Hacking Tools 2020
- Tools Used For Hacking
- Physical Pentest Tools
- Pentest Tools Bluekeep
- Hacking Tools 2019
- Pentest Tools Website
- Pentest Tools Find Subdomains
- Pentest Recon Tools
- Pentest Tools Apk
- Hacker Tools Free Download
- Underground Hacker Sites
- Hacking Tools Windows 10
- Hacker Tools List
- Pentest Tools Url Fuzzer
- Pentest Box Tools Download
- Tools For Hacker
- Hacker Tools Apk
- Hack And Tools
- Hacking Tools For Games
- Hacking Tools Hardware
- Hacker
Comments
Post a Comment