c0ny1
diff --git a/‎.classpath‎
Lines changed: 6 additions & 0 deletions b/‎.classpath‎
Lines changed: 6 additions & 0 deletions
diff --git a/‎.project‎
Lines changed: 17 additions & 0 deletions b/‎.project‎
Lines changed: 17 additions & 0 deletions
diff --git a/‎.settings/org.eclipse.jdt.core.prefs‎
Lines changed: 11 additions & 0 deletions b/‎.settings/org.eclipse.jdt.core.prefs‎
Lines changed: 11 additions & 0 deletions
diff --git a/‎README.md‎
Lines changed: 22 additions & 0 deletions b/‎README.md‎
Lines changed: 22 additions & 0 deletions
diff --git a/‎doc/HTTPHeadModifer.png‎
153 KB b/‎doc/HTTPHeadModifer.png‎
153 KB
diff --git a/‎src/burp/BurpExtender.java‎
Lines changed: 39 additions & 0 deletions b/‎src/burp/BurpExtender.java‎
Lines changed: 39 additions & 0 deletions
diff --git a/‎src/burp/IBurpCollaboratorClientContext.java‎
Lines changed: 63 additions & 0 deletions b/‎src/burp/IBurpCollaboratorClientContext.java‎
Lines changed: 63 additions & 0 deletions
diff --git a/‎src/burp/IBurpCollaboratorInteraction.java‎
Lines changed: 41 additions & 0 deletions b/‎src/burp/IBurpCollaboratorInteraction.java‎
Lines changed: 41 additions & 0 deletions
diff --git a/‎src/burp/IBurpExtender.java‎
Lines changed: 31 additions & 0 deletions b/‎src/burp/IBurpExtender.java‎
Lines changed: 31 additions & 0 deletions
@@ -0,0 +1,6 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<classpath>
+	<classpathentry kind="src" path="src"/>
+	<classpathentry kind="con" path="org.eclipse.jdt.launching.JRE_CONTAINER/org.eclipse.jdt.internal.debug.ui.launcher.StandardVMType/JavaSE-1.8"/>
+	<classpathentry kind="output" path="bin"/>
+</classpath>
@@ -0,0 +1,17 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<projectDescription>
+	<name>HTTPHeadModifer</name>
+	<comment></comment>
+	<projects>
+	</projects>
+	<buildSpec>
+		<buildCommand>
+			<name>org.eclipse.jdt.core.javabuilder</name>
+			<arguments>
+			</arguments>
+		</buildCommand>
+	</buildSpec>
+	<natures>
+		<nature>org.eclipse.jdt.core.javanature</nature>
+	</natures>
+</projectDescription>
@@ -0,0 +1,11 @@
+eclipse.preferences.version=1
+org.eclipse.jdt.core.compiler.codegen.inlineJsrBytecode=enabled
+org.eclipse.jdt.core.compiler.codegen.targetPlatform=1.8
+org.eclipse.jdt.core.compiler.codegen.unusedLocal=preserve
+org.eclipse.jdt.core.compiler.compliance=1.8
+org.eclipse.jdt.core.compiler.debug.lineNumber=generate
+org.eclipse.jdt.core.compiler.debug.localVariable=generate
+org.eclipse.jdt.core.compiler.debug.sourceFile=generate
+org.eclipse.jdt.core.compiler.problem.assertIdentifier=error
+org.eclipse.jdt.core.compiler.problem.enumIdentifier=error
+org.eclipse.jdt.core.compiler.source=1.8
@@ -1,2 +1,24 @@
 # HTTPHeadModifer
 一款快速修改HTTP数据包头的Burp Suite插件
+
+![HTTPHeadModifer插件菜单](doc/HTTPHeadModifer.png)
+
+##一、插件功能
+#### 1.添加IP相关的HTTP头
+方便测试IP伪造，WAF绕过，HTTP盲攻击等等
+
+#### 2.切换User-Agent
+可任意切换Firefox，Chorme，Edge，IE，Opera，Safari，Android，Windows phone,IOS等浏览器和谷歌，必应，百度等各大搜索引擎爬虫的User-Agetn。
+
+PS：数据来源于Chrome浏览器插件`User-Agent Switcher for Google Chrome`和自己补充。
+
+#### 3.添加Origin
+方便测试CROS跨域漏洞
+
+#### 4.更新Cookie
+方便更新数据包为最新可用Cookie，实现代码来自项目[knife](https://github.com/bit4woo/knife)
+
+注意：该功能代码存在问题，正在排查。
+
+## 二、最后的话
+HTTPHeadModifer插件的目的在于 **收集渗透测试过程中涉及的HTTP头，方便我们快速添加到数据包中进行测试** 。如有一些遗漏的HTTP头，欢迎补充！
@@ -0,0 +1,39 @@
+package burp;
+
+import java.awt.Component;
+import java.io.PrintWriter;
+
+public class BurpExtender implements IBurpExtender{
+    private IBurpExtenderCallbacks callbacks;
+    private IExtensionHelpers helpers;
+    private PrintWriter stdout;
+    private PrintWriter stderr;
+	private String extensionName = "HTTPHeadModifer";
+	private String version ="0.1";
+
+    
+    @Override
+    public void registerExtenderCallbacks(IBurpExtenderCallbacks callbacks)
+    {
+        this.callbacks = callbacks;
+        this.helpers = callbacks.getHelpers();
+        this.stdout = new PrintWriter(callbacks.getStdout(),true);
+        this.stderr = new PrintWriter(callbacks.getStderr(),true);
+        
+        callbacks.setExtensionName(String.format("%s v%s", extensionName,version));
+        callbacks.registerContextMenuFactory(new Menu(callbacks));
+        stdout.println(getBanner());
+    }
+    
+	public String getBanner(){
+		String bannerInfo = 
+				    "[+]\n"
+				  + "[+] #####################################\n"
+				  + "[+]    " + extensionName + " v" + version +"\n"
+				  + "[+]    anthor: c0ny1\n"
+				  + "[+]    email:  [email protected]\n"
+				  + "[+]    github: http://github.com/c0ny1/HTTPHeadModifer\n"
+				  + "[+] ####################################";
+		return bannerInfo;
+	}
+}
@@ -0,0 +1,63 @@
+package burp;
+
+/*
+ * @(#)IBurpCollaboratorClientContext.java
+ *
+ * Copyright PortSwigger Ltd. All rights reserved.
+ *
+ * This code may be used to extend the functionality of Burp Suite Free Edition
+ * and Burp Suite Professional, provided that this usage does not violate the
+ * license terms for those products.
+ */
+import java.util.List;
+
+/**
+ * This interface represents an instance of a Burp Collaborator client context,
+ * which can be used to generate Burp Collaborator payloads and poll the
+ * Collaborator server for any network interactions that result from using those
+ * payloads. Extensions can obtain new instances of this class by calling
+ *  <code>IBurpExtenderCallbacks.createBurpCollaboratorClientContext()</code>.
+ * Note that each Burp Collaborator client context is tied to the Collaborator
+ * server configuration that was in place at the time the context was created.
+ */
+public interface IBurpCollaboratorClientContext
+{
+
+    /**
+     * This method is used to generate new Burp Collaborator payloads.
+     *
+     * @param includeCollaboratorServerLocation Specifies whether to include the
+     * Collaborator server location in the generated payload.
+     * @return The payload that was generated.
+     */
+    String generatePayload(boolean includeCollaboratorServerLocation);
+
+    /**
+     * This method is used to retrieve all interactions received by the
+     * Collaborator server resulting from payloads that were generated for this
+     * context.
+     *
+     * @return The Collaborator interactions that have occurred resulting from
+     * payloads that were generated for this context.
+     */
+    List<IBurpCollaboratorInteraction> fetchAllCollaboratorInteractions();
+
+    /**
+     * This method is used to retrieve interactions received by the Collaborator
+     * server resulting from a single payload that was generated for this
+     * context.
+     *
+     * @param payload The payload for which interactions will be retrieved.
+     * @return The Collaborator interactions that have occurred resulting from
+     * the given payload.
+     */
+    List<IBurpCollaboratorInteraction> fetchCollaboratorInteractionsFor(String payload);
+
+    /**
+     * This method is used to retrieve the network location of the Collaborator
+     * server.
+     *
+     * @return The hostname or IP address of the Collaborator server.
+     */
+    String getCollaboratorServerLocation();
+}
@@ -0,0 +1,41 @@
+package burp;
+
+/*
+ * @(#)IBurpCollaboratorInteraction.java
+ *
+ * Copyright PortSwigger Ltd. All rights reserved.
+ *
+ * This code may be used to extend the functionality of Burp Suite Free Edition
+ * and Burp Suite Professional, provided that this usage does not violate the
+ * license terms for those products.
+ */
+import java.util.Map;
+
+/**
+ * This interface represents a network interaction that occurred with the Burp
+ * Collaborator server.
+ */
+public interface IBurpCollaboratorInteraction
+{
+
+    /**
+     * This method is used to retrieve a property of the interaction. Properties
+     * of all interactions are: interaction_id, type, client_ip, and time_stamp.
+     * Properties of DNS interactions are: query_type and raw_query. The
+     * raw_query value is Base64-encoded. Properties of HTTP interactions are:
+     * protocol, request, and response. The request and response values are
+     * Base64-encoded.
+     *
+     * @param name The name of the property to retrieve.
+     * @return A string representing the property value, or null if not present.
+     */
+    String getProperty(String name);
+
+    /**
+     * This method is used to retrieve a map containing all properties of the
+     * interaction.
+     *
+     * @return A map containing all properties of the interaction.
+     */
+    Map<String, String> getProperties();
+}
@@ -0,0 +1,31 @@
+package burp;
+
+/*
+ * @(#)IBurpExtender.java
+ *
+ * Copyright PortSwigger Ltd. All rights reserved.
+ *
+ * This code may be used to extend the functionality of Burp Suite Free Edition
+ * and Burp Suite Professional, provided that this usage does not violate the
+ * license terms for those products.
+ */
+/**
+ * All extensions must implement this interface.
+ *
+ * Implementations must be called BurpExtender, in the package burp, must be
+ * declared public, and must provide a default (public, no-argument)
+ * constructor.
+ */
+public interface IBurpExtender
+{
+    /**
+     * This method is invoked when the extension is loaded. It registers an
+     * instance of the
+     * <code>IBurpExtenderCallbacks</code> interface, providing methods that may
+     * be invoked by the extension to perform various actions.
+     *
+     * @param callbacks An
+     * <code>IBurpExtenderCallbacks</code> object.
+     */
+    void registerExtenderCallbacks(IBurpExtenderCallbacks callbacks);
+}