In this post we present the new version of the Burp Suite extension EsPReSSO - Extension for Processing and Recognition of Single Sign-On Protocols. A DTD attacker was implemented on SAML services that was based on the DTD Cheat Sheet by the Chair for Network and Data Security (https://web-in-security.blogspot.de/2016/03/xxe-cheat-sheet.html). In addition, many fixes were added and a new SAML editor was merged. You can find the newest version release here: https://github.com/RUB-NDS/BurpSSOExtension/releases/tag/v3.1
New SAML editor
Before the new release, EsPReSSO had a simple SAML editor where the decoded SAML messages could be modified by the user. We extended the SAML editor so that the user has the possibility to define the encoding of the SAML message and to select their HTTP binding (HTTP-GET or HTTP-POST). |
| Redesigned SAML Encoder/Decoder |
Enhancement of the SAML attacker
XML Signature Wrapping and XML Signature Faking attacks have already been part of the previous EsPReSSO version. Now the user can also perform DTD attacks! The user can select from 18 different attack vectors and manually refine them all before applying the change to the original message. Additional attack vectors can also be added by extending the XML config file of the DTD attacker.The DTD attacker can also be started in a fully automated mode. This functionality is integrated in the BurpSuite Intruder.
 |
| DTD Attacker for SAML messages |
Supporting further attacks
We implemented a CertificateViewer which extracts and decodes the certificates contained within the SAML tokens. In addition, a user interface for executing SignatureExclusion attack on SAML has been implemented.Additional functions will follow in later versions.
Currently we are working on XML Encryption attacks.This is a combined work from Nurullah Erinola, Nils Engelbertz, David Herring, Juraj Somorovsky, and Vladislav Mladenov.
The research was supported by the European Commission through the FutureTrust project (grant 700542-Future-Trust-H2020-DS-2015-1).
Continue reading
- How To Make Hacking Tools
- Pentest Tools
- Hacker Search Tools
- Nsa Hacker Tools
- Kik Hack Tools
- Hacker Tools Software
- Easy Hack Tools
- Hacker Tools Apk Download
- Tools For Hacker
- Tools For Hacker
- Underground Hacker Sites
- Install Pentest Tools Ubuntu
- Hacking Tools For Windows 7
- Pentest Tools Framework
- Hacker Tools For Pc
- World No 1 Hacker Software
- Pentest Tools Nmap
- Hacker Tools
- Hacker Hardware Tools
- Pentest Tools For Mac
- Hacking Tools For Mac
- Hacker Tools For Ios
- Black Hat Hacker Tools
- Best Pentesting Tools 2018
- Hacking Tools For Kali Linux
- Usb Pentest Tools
- Pentest Tools Open Source
- Hacker Tools
- Pentest Box Tools Download
- Hack Website Online Tool
- Hacker Tools Online
- How To Make Hacking Tools
- Hacker Hardware Tools
- Hacking Tools For Mac
- Nsa Hack Tools
- Hacker Tools 2019
- Hack Tools
- Hackers Toolbox
- Hack And Tools
- Hack Tools
- Hacking Tools Download
- Computer Hacker
- Pentest Tools For Mac
- Pentest Tools Windows
- Pentest Tools Framework
- Hack Tools
- Pentest Tools Review
- Kik Hack Tools
- Hacker Tools List
- Hacking Tools And Software
- Hacker Tools Mac
- Hacking Tools For Beginners
- Hacker Tools Windows
- Hack And Tools
- Free Pentest Tools For Windows
- Hack Tools Github
- Pentest Tools Url Fuzzer
- Pentest Tools Subdomain
- Pentest Tools For Windows
- Hacker Tools List
- Android Hack Tools Github
- Hacker Tool Kit
- Hacking Tools For Beginners
- Hack Website Online Tool
- Hacker Tools Windows
- Install Pentest Tools Ubuntu
- Hacking Tools Mac
- Hacks And Tools
- Pentest Tools Bluekeep
- Hack Tools Download
- Hacking Tools Software
- Hacking Tools Usb
- Termux Hacking Tools 2019
- Pentest Box Tools Download
- Pentest Tools Find Subdomains
- Pentest Tools Apk
- Tools 4 Hack
- Underground Hacker Sites
- Hacking Tools Download
- Hack Rom Tools
- Pentest Tools Free
- Pentest Tools Find Subdomains
- Hacking Tools Usb
- Pentest Tools For Mac
