The indisputable reality of the pentesting world is the preeminence of PowerShell, PowerShell has brought windows to a new level never seen before and transformed windows from being the exploited to the world of the exploiter; which has created a minor but still annoying dilemma of what platform to use…
This short blog will introduce one of the most common vulnerabilities reported for the last 21 years since the Common Vulnerabilities and Exposure database/site (CVE) was launched, Buffer Overflows. To provide a little bit of context lets go over some CVE trivia. The second-ever reported vulnerability recorded in the CVE…
What is FoxyProxy
FoxyProxy is a Chrome/Firefox add on that allows you to configure multiple proxies and use wildcard/regex to implement a complex variety of proxy rules giving you full control on how your traffic is managed between your browser and Burp.
For the basics on how to use FoxyProxy please go to https://help.getfoxyproxy.org/index.php/knowledge-base/how-to-use-your-proxy-service-with-firefox-and-foxyproxy-extension/; this should get you up and running on no time.
FoxyProxy URL Patterns guide: mostly wildcards with some regex guidance https://help.getfoxyproxy.org/index.php/knowledge-base/url-patterns/
FoxyProxy Regex Cheat Sheet.
Any regex can be used here 😊, to help to learn regex I would recommend https://regex101.com/
Hope it helps
Thought I would share with you guys “tip of the day or month”. To share the Burp extensions/apps between Linux machines (Kali in my case) or users within the same machine. Simply copy the source user’s “.BurpSuite” folder, located in the user’s home folder, across to the destination user’s home folder (it is user independent so it doesn’t need to have the same name). Please ensure the source user’s home folder is the same user as the one that you open Burp with, I say this because I use multiple users for pen testing/bug hunting.
Hope it helps.