GithubHelp home page GithubHelp logo

r3l1c7 / error-message-checks Goto Github PK

View Code? Open in Web Editor NEW

This project forked from portswigger/error-message-checks

0.0 0.0 0.0 299 KB

Burp Suite extension to passively scan for applications revealing server error messages

Java 94.80% HTML 5.20%

error-message-checks's Introduction

Build Status Known Vulnerabilities

burp-suite-error-message-checks

This Burp Suite 1.5+ extension passively detects server error messages in running applications. Some examples:

  • Fatal error: Call to a member function getId() on a non-object in /var/www/docroot/application/modules/controllers/ModalController.php on line 609
  • You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax
  • [SEVERE] at net.minecraft.server.World.tickEntities(World.java:1146)
  • System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint) +2071
  • c() called at [/tmp/include.php:10]
  • Use of uninitialized value in string eq at /Library/Perl/5.8.6/WWW/Mechanize.pm line 695

Often error messages may go unnoticed by a tester who is only looking at the application UI. This extension is designed to passively detect error messages, even during scanning, spidering, etc.

Match rules are loaded from a remote tab-delimited file at extension startup. Users can also load their own match rules from a local file or using the BApp GUI.

Building:

mvn clean install

error-message-checks's People

Contributors

augustd avatar pajswigger avatar ahri avatar ewilded avatar r3l1c7 avatar mike-smith-ps avatar uthmanportswigger avatar adetlefsen-rms avatar portswiggersupport avatar henshin avatar dependabot[bot] avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.