search

DolphFlynn / jwt-editor

A Burp Suite extension for creating and editing JSON Web Tokens. This tool supports signing and verification of JWS, encryption and decryption of JWE and automation of several well-known attacks against applications that consume JWT.
Apache License 2.0
12 stars 11 forks source link

Installation issues of JDK on low version Burp #63

Closed carpenter-l closed 2 months ago

carpenter-l commented 2 months ago

When using the version of Burp 2022, it cannot be installed in BAPP storez. Will we consider providing lower version plugins in the future? image

DolphFlynn commented 2 months ago

In terms of the BApp Store, you will need to ask PortSwigger. As far as I know, they only support the latest version of each BApp, but if you contact them, they can assist you.

With respect to running JWT Editor on old versions of Burp, in general, it will work as long as you avoid method calls that have been implemented in more recent versions. However 2022 versions are probably still using the old IBurpExtender API so your best bet is to check out and build the original BlackBerry version. If you need help building it then let me know.

How come you're using such an old version of Burp?

carpenter-l commented 2 months ago

Hello, the reason for using the old version of Burp is that the new version of Burp is not as convenient in terms of UI and usage as the old version. Perhaps there are still many people using old versions of Burp for various reasons such as nostalgia. If you could compile the JWT plugin for the old version of Burp, I would greatly appreciate it

DolphFlynn commented 2 months ago

It's been a while since I worked with the BlackBerry version, but these steps should work for you:

This should put the file jwt-editor-1.1.0-jar-with-dependencies.jar into the target diretory which you can then load into Burp.