Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Similar Burp extension #2

Open
h3xstream opened this issue Jun 19, 2016 · 1 comment
Open

Similar Burp extension #2

h3xstream opened this issue Jun 19, 2016 · 1 comment

Comments

@h3xstream
Copy link

h3xstream commented Jun 19, 2016

Hi Joe,
This is a simple notification to let you know that I have built a very similar extension. Both have passive rules to analyze CSP header(s).
I initially start the extension to have a readable View of the header in the response tab then I added some passive rules.

Anw, I not here to say that I am competing with your extension. I think that solely base on the fact that it was developed in Python could be useful for some people. I also saw that the passive rules are not exactly the same.

Finally, I am not close to exchanging information and contributions. Here are some list that am using to identify bad hosts configured (additional host to ajax.googleapis.com):

Also, I have submitted the extension just over a month ago for the Bapp Store.. I have no idea it will be accepted.

@moloch--
Copy link
Owner

Cool, it's all gravy man. I just wrote this to play around with the Burp APIs, I'm not heavily invested in it or anything.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Development

No branches or pull requests

2 participants