{"id":4144,"date":"2021-04-07T09:30:54","date_gmt":"2021-04-07T09:30:54","guid":{"rendered":"https:\/\/www.jameseduard.com\/?p=4144"},"modified":"2021-04-07T09:30:54","modified_gmt":"2021-04-07T09:30:54","slug":"copy-as-xmlhttprequest-burpsuite-extension","status":"publish","type":"post","link":"https:\/\/www.jameseduard.com\/?p=4144","title":{"rendered":"Copy as XMLHttpRequest BurpSuite Extension"},"content":{"rendered":"<p>The extension adds a context menu to BurpSuite that allows you to copy multiple requests as Javascript&#8217;s XmlHttpRequest, which simplifies PoC development when exploiting XSS.<br \/>\n<strong><br \/>\nInstallation<\/strong><br \/>\ndownload the latest JAR from releases or build manually<br \/>\nadd JAR to burpsuite using tabs: <strong>&#8220;Extender&#8221; -&gt; &#8220;Extensions&#8221; -&gt; &#8220;Add&#8221;<\/strong><\/p>\n<p><strong>Usage<\/strong><br \/>\nselect one request from any tab or a few requests in &#8220;Proxy&#8221; -&gt; &#8220;HTTP history&#8221; tab<br \/>\ninvoke context menu and select <strong>&#8220;Copy as XMLHttpRequest&#8221;<\/strong><\/p>\n<div style=\"width: 640px;\" class=\"wp-video\"><video class=\"wp-video-shortcode\" id=\"video-4144-1\" width=\"640\" height=\"385\" preload=\"metadata\" controls=\"controls\"><source type=\"video\/mp4\" src=\"http:\/\/www.jameseduard.com\/wp-content\/uploads\/2021\/04\/bsenxtension.mp4?_=1\" \/><a href=\"http:\/\/www.jameseduard.com\/wp-content\/uploads\/2021\/04\/bsenxtension.mp4\">http:\/\/www.jameseduard.com\/wp-content\/uploads\/2021\/04\/bsenxtension.mp4<\/a><\/video><\/div>\n<p>&nbsp;<\/p>\n<p><b><a class=\"kiploit-download\" title=\"Download Burpsuite-Copy-As-Xmlhttprequest\" href=\"https:\/\/github.com\/vulnbe\/burpsuite-copy-as-xmlhttprequest\" target=\"_blank\" rel=\"nofollow noopener\">Download Burpsuite-Copy-As-Xmlhttprequest<\/a><\/b><\/p>\n","protected":false},"excerpt":{"rendered":"<p>The extension adds a context menu to BurpSuite that allows you to copy multiple requests as Javascript&#8217;s XmlHttpRequest, which simplifies PoC development when exploiting XSS. Installation download the latest JAR from releases or build manually add JAR to burpsuite using tabs: &#8220;Extender&#8221; -&gt; &#8220;Extensions&#8221; -&gt; &#8220;Add&#8221; Usage select one request from any tab or a<\/p>\n","protected":false},"author":1,"featured_media":4146,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[662,154,278],"tags":[696,810,811],"class_list":["post-4144","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-auditing-tool","category-pentesting-tools","category-web-application","tag-burpsuite","tag-jar","tag-xmlhttprequest"],"_links":{"self":[{"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=\/wp\/v2\/posts\/4144","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=4144"}],"version-history":[{"count":0,"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=\/wp\/v2\/posts\/4144\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=4144"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=4144"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=4144"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}