Modified URL and Base64 encoding for Base64 Gzip payloads

federicodotta / Java-Deserialization-Scanner

All-in-one plugin for Burp Suite for the detection and the exploitation of Java deserialization vulnerabilities

776 stars 177 forks source link

Modified URL and Base64 encoding for Base64 Gzip payloads #8

Closed jg10 closed 7 years ago

jg10 commented 7 years ago

Hi Frederico,

As I mentioned in my previous pull request, I have had to re-implement the specific URL encoding and Base64 encoding code for the Base64 Gzip payloads. This pull request work now for your original test cases as well as for default Java Server Faces viewstate.

If you are happy with this I think it would be ready for updating in the BAPP store.

Regards,

Jeremy

federicodotta commented 7 years ago

Hi Jeremy! Thank you! I'm working on a major update. Soon I will push my last commits and then I will merge your branch! After that I will create a new release and update the version on the BAppStore!