0

Support For XXE Attacks In SAML In Our Burp Suite Extension


In this post we present the new version of the Burp Suite extension EsPReSSO - Extension for Processing and Recognition of Single Sign-On Protocols. A DTD attacker was implemented on SAML services that was based on the DTD Cheat Sheet by the Chair for Network and Data Security (https://web-in-security.blogspot.de/2016/03/xxe-cheat-sheet.html). In addition, many fixes were added and a new SAML editor was merged. You can find the newest version release here: https://github.com/RUB-NDS/BurpSSOExtension/releases/tag/v3.1

New SAML editor

Before the new release, EsPReSSO had a simple SAML editor where the decoded SAML messages could be modified by the user. We extended the SAML editor so that the user has the possibility to define the encoding of the SAML message and to select their HTTP binding (HTTP-GET or HTTP-POST).

Redesigned SAML Encoder/Decoder

Enhancement of the SAML attacker

XML Signature Wrapping and XML Signature Faking attacks have already been part of the previous EsPReSSO version. Now the user can also perform DTD attacks! The user can select from 18 different attack vectors and manually refine them all before applying the change to the original message. Additional attack vectors can also be added by extending the XML config file of the DTD attacker.
The DTD attacker can also be started in a fully automated mode. This functionality is integrated in the BurpSuite Intruder.

DTD Attacker for SAML messages

Supporting further attacks

We implemented a CertificateViewer which extracts and decodes the certificates contained within the SAML tokens. In addition, a user interface for executing SignatureExclusion attack on SAML has been implemented.

Additional functions will follow in later versions.

Currently we are working on XML Encryption attacks.

This is a combined work from Nurullah Erinola, Nils Engelbertz, David Herring, Juraj Somorovsky, and Vladislav Mladenov.

The research was supported by the European Commission through the FutureTrust project (grant 700542-Future-Trust-H2020-DS-2015-1).
More information

  1. Hack Tools Pc
  2. Hacking Tools Mac
  3. Install Pentest Tools Ubuntu
  4. Hack Tools For Games
  5. Hacker Tools 2020
  6. Hack App
  7. Pentest Tools Free
  8. Hacking Tools Pc
  9. Pentest Tools Website
  10. Hacker Tools Free Download
  11. Hacker Search Tools
  12. Hacking Tools For Pc
  13. Pentest Tools For Ubuntu
  14. Hacking Tools Usb
  15. Usb Pentest Tools
  16. Github Hacking Tools
  17. How To Hack
  18. Pentest Tools For Windows
  19. How To Hack
  20. Hacking Tools
  21. Pentest Tools Find Subdomains
  22. Hacking Tools For Windows 7
  23. Computer Hacker
  24. Hacker Tools Free Download
  25. Blackhat Hacker Tools
  26. Hacking Tools For Windows
  27. What Are Hacking Tools
  28. Install Pentest Tools Ubuntu
  29. Hacking Tools Pc
  30. Hacking Tools Download
  31. Hacker Tools For Pc
  32. Hacker Tools Apk Download
  33. Pentest Tools Open Source
  34. Hacker Tools Hardware
  35. Pentest Tools Tcp Port Scanner
  36. Hacker Tools Mac
  37. Hacker Tools For Pc
  38. Hacker Tools Mac
  39. Hacker Tools Online
  40. Hacking Tools For Mac
  41. Pentest Reporting Tools
  42. Pentest Tools Find Subdomains
  43. Hacker Tools Free
  44. Hack And Tools
  45. Pentest Reporting Tools
  46. Pentest Tools Framework
  47. Termux Hacking Tools 2019
  48. Hacker Tools For Mac
  49. Pentest Tools Windows
  50. Hacker Tools
  51. Hacker Techniques Tools And Incident Handling
  52. Hacking Tools Mac
  53. Pentest Tools Website Vulnerability
  54. Hack Tools Github
  55. Hack Tools For Games
  56. Growth Hacker Tools
  57. Hacking Tools Download
  58. Blackhat Hacker Tools
  59. New Hack Tools
  60. Termux Hacking Tools 2019
  61. Pentest Tools Github
  62. Termux Hacking Tools 2019
  63. Hacking App
  64. Hack Tools For Mac
  65. Hacking Tools Download
  66. Tools 4 Hack
  67. Hack Tools For Pc
  68. Android Hack Tools Github
  69. Hackers Toolbox
  70. Hacker Tools Free
  71. Blackhat Hacker Tools
  72. Pentest Tools Nmap
  73. Hack And Tools
  74. Best Pentesting Tools 2018
  75. How To Make Hacking Tools
  76. Hack Tool Apk No Root
  77. Tools For Hacker
  78. Hack Tools Online
  79. Hacking Tools Usb
  80. Hacker Techniques Tools And Incident Handling
  81. Hacker Tools For Pc
  82. Hacker Tools Linux
  83. Hack Tools
  84. Hack App
  85. Underground Hacker Sites
  86. New Hack Tools
  87. Hacker Tools List
  88. Pentest Tools
  89. Hackers Toolbox
  90. Pentest Tools Apk
  91. Tools For Hacker
  92. Hacker Tools Linux
  93. Underground Hacker Sites
  94. Hacker Tools Mac
  95. What Are Hacking Tools
  96. Beginner Hacker Tools
  97. Growth Hacker Tools
  98. Hacking Tools Free Download
  99. Hacker Tools For Pc
  100. Hack Tools Github
  101. Nsa Hack Tools Download
  102. Pentest Box Tools Download
  103. Pentest Tools Nmap
  104. Hacks And Tools
  105. Hacker Tools For Windows
  106. Pentest Box Tools Download
  107. Black Hat Hacker Tools
  108. Hackers Toolbox
  109. Pentest Tools Tcp Port Scanner
  110. Pentest Tools Subdomain
  111. Pentest Tools Free
  112. Github Hacking Tools
  113. Hacking Tools For Windows Free Download
  114. Hacker Tools Online
  115. Bluetooth Hacking Tools Kali
  116. Hacking Tools Github
  117. Pentest Tools Review
  118. Hacking Tools For Windows
  119. Hacking Tools For Mac
  120. Pentest Tools Find Subdomains
  121. How To Hack
  122. Hacker Security Tools
  123. Hack Tools For Windows
  124. Pentest Tools List
  125. Hack Tools 2019
  126. Hack Tools 2019
  127. Pentest Tools For Android
  128. What Is Hacking Tools
  129. World No 1 Hacker Software
With lots of Critical Appreciation at 9:39 AM

0 critiques:

Post a Comment

Subscribe to: Post Comments (Atom)
Back to Top