Pro Tip: The Right Way to Test JSON Parameters with Burp
In Summary : Here’s a Burp trick you might not know, which helped find this instance of command execution and lots of SQL injection in oth...
https://updatesinfosec.blogspot.com/2018/05/pro-tip-right-way-to-test-json.html
In Summary :
Here’s a Burp trick you might not know, which helped find this instance of command execution and lots of SQL injection in other applications. Despite PortSwigger claiming otherwise, Burp does not parse JSON very well, especially nested JSON parameters and values like you see below. [...]
kindly refer the following link as follow up :
https://ift.tt/2IFltxm
Here’s a Burp trick you might not know, which helped find this instance of command execution and lots of SQL injection in other applications. Despite PortSwigger claiming otherwise, Burp does not parse JSON very well, especially nested JSON parameters and values like you see below. [...]
kindly refer the following link as follow up :
https://ift.tt/2IFltxm
