J2EEScan is a plugin for Burp Suite Proxy. The goal of this plugin is to improve the test coverage during web application penetration tests on J2EE applications.
This plugin can be used to detect AJP13 services. Despite being a binary protocol, I think it's interesting to identify this service during a Burp Active Scan.
The plugin uses the host provided by Burp Pro and connects to common AJP ports. The detection is made using an innocuous AJP's CPing packet.
New Test Case: AJP13 Detector
This plugin can be used to detect AJP13 services. Despite being a binary protocol, I think it's interesting to identify this service during a Burp Active Scan.
The plugin uses the host provided by Burp Pro and connects to common AJP ports. The detection is made using an innocuous AJP's CPing packet.