Skip to content
/ Xigner Public

Xigner is a BurpSuite plugin that parses out XML sent within the HTTP request and replace it with a valid digitally signed value on the fly.

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

alyanwarr/Xigner

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits

dist

dist

 
 

README.md

README.md

 
 

sign.py

sign.py

 
 

xigner.py

xigner.py

 
 

xmldsig.py

xmldsig.py

 
 

xmldsig.pyc

xmldsig.pyc

 
 

Repository files navigation

Xigner

Xigner is a BurpSuite plugin that parses out XML sent within the HTTP request and generates valid digital signature value on the fly.

How to use it:

  1. Clone the project
  2. Add your private key file(s) in "certs" folder
  3. Over-ride <example></example> in xigner.py to match your desired XML message tags name
  4. Over-ride file.key in run.py to point to your private key file
  5. Add xigner.py to your BurpSuite Project

You should now have a new tab in your BurpSuite HTTP message editor named "Signed XML" that would automatically sign and replace the original XML messages on the fly each time you click on it.

Requirements:

  1. xmldsig installed
  2. Jython imported in BurpSuite

Screenshots:

screenshot_7

screenshot_8

screenshot_9

Credits:

AntagonistHQ for xmldsig wrapper

About

Xigner is a BurpSuite plugin that parses out XML sent within the HTTP request and replace it with a valid digitally signed value on the fly.

Resources

Readme
Activity

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages