By Patrick Schmid
This Burp Suite extension monitors a provided JWT token for its expiration and replaces any already present JWT token in outgoing requests with the provided one. In addition, if autopilot mode is activated, the extension automatically pauses task execution when the provided JWT token is about to expire within the next minute. Task execution resumes automatically again when a new JWT token with at least three minutes of validity left is supplied.
In IntelliJ click the Elephant Symbol on the far right hand bar and visit Tasks -> shadow -> shadowJar
To set up the Intellij debugger, we first need to tell Burp Suite to allow debugging with these steps:
- Add the line
-agentlib:jdwp=transport=dt_socket,address=localhost:8700,server=y,suspend=nto/Applications/Burp Suite Professional.app/Contents/vmoptions.txt - Open Burp Suite
- In IntelliJ Open the Menu and choose
Run -> Attach to Process. Choose the Burp Suite process listening on port 8700 - Set a breakpoint in the "YourBurpKotlinExtensionName" class by clicking the line number next to the hello world statement
- Load (or reload with ctrl + click) your extension and watch it stop at the breakpoint inside of IntelliJ