HTTP Request is malformed

ahri / burp-report-to-elasticsearch

A Burp extension that passes along discovered Issues to an ElasticSearch database.

1 stars 2 forks source link

HTTP Request is malformed #1

Open obi-jon opened 7 years ago

obi-jon commented 7 years ago

The plugin is sending the data without a leading "/" in the URI, which will cause logstash to return a 400 Bad Request status.

Plugin currently sends -> POST burp-/issue malformed_redacted

This produces an error in logstash errored

If the data is sent with a leading slash -> POST /burp-/issue then logstash accepts it. accepted_redacted

obi-jon commented 7 years ago

As a follow up - This may be a non-issue. The application allows you to include the leading slash in the "Elasticsearch Prefix" Field which is translated directly into the URI request. prepended- slash