Skip to content

Latest commit

 

History

History
31 lines (18 loc) · 1.19 KB

README.md

File metadata and controls

31 lines (18 loc) · 1.19 KB

Xigner

Xigner is a BurpSuite plugin that parses out XML sent within the HTTP request and generates valid digital signature value on the fly.

How to use it:

  1. Clone the project
  2. Add your private key file(s) in "certs" folder
  3. Over-ride <example></example> in xigner.py to match your desired XML message tags name
  4. Over-ride file.key in run.py to point to your private key file
  5. Add xigner.py to your BurpSuite Project

You should now have a new tab in your BurpSuite HTTP message editor named "Signed XML" that would automatically sign and replace the original XML messages on the fly each time you click on it.

Requirements:

  1. xmldsig installed
  2. Jython imported in BurpSuite

Screenshots:

screenshot_7

screenshot_8

screenshot_9

Credits:

AntagonistHQ for xmldsig wrapper