search

federicodotta / Java-Deserialization-Scanner

All-in-one plugin for Burp Suite for the detection and the exploitation of Java deserialization vulnerabilities
774 stars 178 forks source link

Add ruby deser. detection #17

Closed dorkerdevil closed 4 years ago

dorkerdevil commented 5 years ago

Is it possible to add to detect ruby Deserialization vulnerability

reference: https://www.elttam.com.au/blog/ruby-deserialization/

change the content type to Content-Type:application/xml

and sending the gadget chain to test.

federicodotta commented 4 years ago

Hi!

thank you but the plugin is focused on Java. For the moment I will not add other languages.

Federico