Skip to content

Releases: netsquare/Auto-Payload-Positioner

v2.0.0 New Options

26 Jun 14:56
@zinja-coder zinja-coder
v2.0.0
061444f
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v2.0.0 New Options Latest
Latest

What's New

Multiple Payload Positioning Modes

Previously, the extension used a single "one-size-fits-all" approach. Now you can choose from 10 different modes to match your specific testing needs:

Core Options
  • Default (No HTTP Method) - Parameters, body, headers, and URL path (last part only)
  • Default + Full URL Path - Same as default but targets the entire URL path
  • Everything - Includes HTTP method + all default positions
  • Everything + Full URL Path - Complete coverage including HTTP method and full URL path
Headers-Focused Options
  • Headers Only - Target only HTTP headers for focused header testing
  • Headers + Method - Headers plus HTTP method
  • Headers + URL Path Last Part - Headers plus the last segment of URL path
  • Headers + URL Path Last Part + Method - Headers, URL path segment, and HTTP method
  • Headers + Full URL Path - Headers plus complete URL path
  • Headers + Full URL Path + Method - Maximum coverage with headers, full URL path, and HTTP method

Why This Matters

Better Testing Precision
  • Focused Testing: Choose exactly what you want to test instead of everything at once
  • Reduced Noise: Avoid unnecessary payload positions that don't match your test case
  • Faster Results: Fewer payload positions mean faster Intruder runs

How to Use

  • Right-click on any HTTP request in Burp Suite
  • Select from the 10 available payload positioning modes
  • The request will be sent to Intruder with payloads positioned according to your selection
  • Run your attack with precise payload placement

Migration Notes

  • Existing Users: The extension now defaults to "Default (No HTTP Method)" mode, which is similar to the previous behavior but excludes HTTP method positioning
  • No Breaking Changes: All existing functionality remains intact
  • Backward Compatibility: Previous behavior can be achieved using "Everything" mode

Technical Improvements

  • Enhanced context menu with clear mode descriptions
  • Optimized payload positioning logic for better performance
  • Improved error handling for complex request formats
  • Better thread management for processing multiple requests

Checksum

  • AutoPayloadPositioner-v2.0.0.jar: sha256:15a17d9323128b95c42891791fe6b670d995712754473eb4e70804bb8899e368
Assets 3
Loading

v1.0.0

28 Apr 18:49
@zinja-coder zinja-coder
v1.0.0
4ff2606
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v1.0.0

v1.0.0 Release, Read README for more info.

Loading