commit b84754db2034ad613d58cc035d610548ae6e819c Author: David McKinney Date: Tue May 30 11:35:09 2023 -0400 Initial commit diff --git a/.gitignore b/.gitignore new file mode 100644 index 0000000..0261de7 --- /dev/null +++ b/.gitignore @@ -0,0 +1,27 @@ +.calva/output-window/ +.classpath +.clj-kondo/.cache +.cpcache +.eastwood +.factorypath +.hg/ +.hgignore +.java-version +.lein-* +.lsp/.cache +.lsp/sqlite.db +.nrepl-history +.nrepl-port +.project +.rebel_readline_history +.settings +.socket-repl-port +.sw* +.vscode +*.class +*.jar +*.swp +*~ +/checkouts +/classes +/target diff --git a/LICENSE b/LICENSE new file mode 100644 index 0000000..d921d3d --- /dev/null +++ b/LICENSE @@ -0,0 +1,214 @@ +THE ACCOMPANYING PROGRAM IS PROVIDED UNDER THE TERMS OF THIS ECLIPSE PUBLIC +LICENSE ("AGREEMENT"). ANY USE, REPRODUCTION OR DISTRIBUTION OF THE PROGRAM +CONSTITUTES RECIPIENT'S ACCEPTANCE OF THIS AGREEMENT. + +1. DEFINITIONS + +"Contribution" means: + +a) in the case of the initial Contributor, the initial code and +documentation distributed under this Agreement, and + +b) in the case of each subsequent Contributor: + +i) changes to the Program, and + +ii) additions to the Program; + +where such changes and/or additions to the Program originate from and are +distributed by that particular Contributor. A Contribution 'originates' from +a Contributor if it was added to the Program by such Contributor itself or +anyone acting on such Contributor's behalf. Contributions do not include +additions to the Program which: (i) are separate modules of software +distributed in conjunction with the Program under their own license +agreement, and (ii) are not derivative works of the Program. + +"Contributor" means any person or entity that distributes the Program. + +"Licensed Patents" mean patent claims licensable by a Contributor which are +necessarily infringed by the use or sale of its Contribution alone or when +combined with the Program. + +"Program" means the Contributions distributed in accordance with this +Agreement. + +"Recipient" means anyone who receives the Program under this Agreement, +including all Contributors. + +2. GRANT OF RIGHTS + +a) Subject to the terms of this Agreement, each Contributor hereby grants +Recipient a non-exclusive, worldwide, royalty-free copyright license to +reproduce, prepare derivative works of, publicly display, publicly perform, +distribute and sublicense the Contribution of such Contributor, if any, and +such derivative works, in source code and object code form. + +b) Subject to the terms of this Agreement, each Contributor hereby grants +Recipient a non-exclusive, worldwide, royalty-free patent license under +Licensed Patents to make, use, sell, offer to sell, import and otherwise +transfer the Contribution of such Contributor, if any, in source code and +object code form. This patent license shall apply to the combination of the +Contribution and the Program if, at the time the Contribution is added by the +Contributor, such addition of the Contribution causes such combination to be +covered by the Licensed Patents. The patent license shall not apply to any +other combinations which include the Contribution. No hardware per se is +licensed hereunder. + +c) Recipient understands that although each Contributor grants the licenses +to its Contributions set forth herein, no assurances are provided by any +Contributor that the Program does not infringe the patent or other +intellectual property rights of any other entity. Each Contributor disclaims +any liability to Recipient for claims brought by any other entity based on +infringement of intellectual property rights or otherwise. As a condition to +exercising the rights and licenses granted hereunder, each Recipient hereby +assumes sole responsibility to secure any other intellectual property rights +needed, if any. For example, if a third party patent license is required to +allow Recipient to distribute the Program, it is Recipient's responsibility +to acquire that license before distributing the Program. + +d) Each Contributor represents that to its knowledge it has sufficient +copyright rights in its Contribution, if any, to grant the copyright license +set forth in this Agreement. + +3. REQUIREMENTS + +A Contributor may choose to distribute the Program in object code form under +its own license agreement, provided that: + +a) it complies with the terms and conditions of this Agreement; and + +b) its license agreement: + +i) effectively disclaims on behalf of all Contributors all warranties and +conditions, express and implied, including warranties or conditions of title +and non-infringement, and implied warranties or conditions of merchantability +and fitness for a particular purpose; + +ii) effectively excludes on behalf of all Contributors all liability for +damages, including direct, indirect, special, incidental and consequential +damages, such as lost profits; + +iii) states that any provisions which differ from this Agreement are offered +by that Contributor alone and not by any other party; and + +iv) states that source code for the Program is available from such +Contributor, and informs licensees how to obtain it in a reasonable manner on +or through a medium customarily used for software exchange. + +When the Program is made available in source code form: + +a) it must be made available under this Agreement; and + +b) a copy of this Agreement must be included with each copy of the Program. + +Contributors may not remove or alter any copyright notices contained within +the Program. + +Each Contributor must identify itself as the originator of its Contribution, +if any, in a manner that reasonably allows subsequent Recipients to identify +the originator of the Contribution. + +4. COMMERCIAL DISTRIBUTION + +Commercial distributors of software may accept certain responsibilities with +respect to end users, business partners and the like. While this license is +intended to facilitate the commercial use of the Program, the Contributor who +includes the Program in a commercial product offering should do so in a +manner which does not create potential liability for other Contributors. +Therefore, if a Contributor includes the Program in a commercial product +offering, such Contributor ("Commercial Contributor") hereby agrees to defend +and indemnify every other Contributor ("Indemnified Contributor") against any +losses, damages and costs (collectively "Losses") arising from claims, +lawsuits and other legal actions brought by a third party against the +Indemnified Contributor to the extent caused by the acts or omissions of such +Commercial Contributor in connection with its distribution of the Program in +a commercial product offering. The obligations in this section do not apply +to any claims or Losses relating to any actual or alleged intellectual +property infringement. In order to qualify, an Indemnified Contributor must: +a) promptly notify the Commercial Contributor in writing of such claim, and +b) allow the Commercial Contributor to control, and cooperate with the +Commercial Contributor in, the defense and any related settlement +negotiations. The Indemnified Contributor may participate in any such claim +at its own expense. + +For example, a Contributor might include the Program in a commercial product +offering, Product X. That Contributor is then a Commercial Contributor. If +that Commercial Contributor then makes performance claims, or offers +warranties related to Product X, those performance claims and warranties are +such Commercial Contributor's responsibility alone. Under this section, the +Commercial Contributor would have to defend claims against the other +Contributors related to those performance claims and warranties, and if a +court requires any other Contributor to pay any damages as a result, the +Commercial Contributor must pay those damages. + +5. NO WARRANTY + +EXCEPT AS EXPRESSLY SET FORTH IN THIS AGREEMENT, THE PROGRAM IS PROVIDED ON +AN "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, EITHER +EXPRESS OR IMPLIED INCLUDING, WITHOUT LIMITATION, ANY WARRANTIES OR +CONDITIONS OF TITLE, NON-INFRINGEMENT, MERCHANTABILITY OR FITNESS FOR A +PARTICULAR PURPOSE. Each Recipient is solely responsible for determining the +appropriateness of using and distributing the Program and assumes all risks +associated with its exercise of rights under this Agreement , including but +not limited to the risks and costs of program errors, compliance with +applicable laws, damage to or loss of data, programs or equipment, and +unavailability or interruption of operations. + +6. DISCLAIMER OF LIABILITY + +EXCEPT AS EXPRESSLY SET FORTH IN THIS AGREEMENT, NEITHER RECIPIENT NOR ANY +CONTRIBUTORS SHALL HAVE ANY LIABILITY FOR ANY DIRECT, INDIRECT, INCIDENTAL, +SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING WITHOUT LIMITATION +LOST PROFITS), HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN +CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) +ARISING IN ANY WAY OUT OF THE USE OR DISTRIBUTION OF THE PROGRAM OR THE +EXERCISE OF ANY RIGHTS GRANTED HEREUNDER, EVEN IF ADVISED OF THE POSSIBILITY +OF SUCH DAMAGES. + +7. GENERAL + +If any provision of this Agreement is invalid or unenforceable under +applicable law, it shall not affect the validity or enforceability of the +remainder of the terms of this Agreement, and without further action by the +parties hereto, such provision shall be reformed to the minimum extent +necessary to make such provision valid and enforceable. + +If Recipient institutes patent litigation against any entity (including a +cross-claim or counterclaim in a lawsuit) alleging that the Program itself +(excluding combinations of the Program with other software or hardware) +infringes such Recipient's patent(s), then such Recipient's rights granted +under Section 2(b) shall terminate as of the date such litigation is filed. + +All Recipient's rights under this Agreement shall terminate if it fails to +comply with any of the material terms or conditions of this Agreement and +does not cure such failure in a reasonable period of time after becoming +aware of such noncompliance. If all Recipient's rights under this Agreement +terminate, Recipient agrees to cease use and distribution of the Program as +soon as reasonably practicable. However, Recipient's obligations under this +Agreement and any licenses granted by Recipient relating to the Program shall +continue and survive. + +Everyone is permitted to copy and distribute copies of this Agreement, but in +order to avoid inconsistency the Agreement is copyrighted and may only be +modified in the following manner. The Agreement Steward reserves the right to +publish new versions (including revisions) of this Agreement from time to +time. No one other than the Agreement Steward has the right to modify this +Agreement. The Eclipse Foundation is the initial Agreement Steward. The +Eclipse Foundation may assign the responsibility to serve as the Agreement +Steward to a suitable separate entity. Each new version of the Agreement will +be given a distinguishing version number. The Program (including +Contributions) may always be distributed subject to the version of the +Agreement under which it was received. In addition, after a new version of +the Agreement is published, Contributor may elect to distribute the Program +(including its Contributions) under the new version. Except as expressly +stated in Sections 2(a) and 2(b) above, Recipient receives no rights or +licenses to the intellectual property of any Contributor under this +Agreement, whether expressly, by implication, estoppel or otherwise. All +rights in the Program not expressly granted under this Agreement are +reserved. + +This Agreement is governed by the laws of the State of New York and the +intellectual property laws of the United States of America. No party to this +Agreement will bring a legal action under this Agreement more than one year +after the cause of action arose. Each party waives its rights to a jury trial +in any resulting litigation. diff --git a/README.md b/README.md new file mode 100644 index 0000000..a7b69e8 --- /dev/null +++ b/README.md @@ -0,0 +1,43 @@ +# subgraph/burp-clj-montoya + +burp-blj-montoya is a WIP bridge between Clojure and the new Burp Suite Pro +Montoya API. The aim is to make Burp programmable and extendable at +runtime without having to reload or package extensions. + +## Installation + +Download from https://git.subgraph.com/mckinney/burp-clj-montoya + +## Usage + + +Run the project's tests (they'll fail until you edit them): + + $ clojure -T:build test + +Build an uberjar to be imported into Burp Suite: +``` + $ clojure -T:build ci +``` + +This will produce an updated `pom.xml` file with synchronized dependencies inside the `META-INF` +directory inside `target/classes` and the uberjar in `target`. You can update the version (and SCM tag) +information in generated `pom.xml` by updating `build.clj`. + +If you don't want the `pom.xml` file in your project, you can remove it. The `ci` task will +still generate a minimal `pom.xml` as part of the `uber` task, unless you remove `version` +from `build.clj`. + +Start Burp with `clojure.jar` imported so it can be used with our uberjar: +``` +$ java -cp clojure.jar -jar -Xmx8g burpsuite_pro_v2023.2.3.jar +``` + +After loading the extension from the `target` directory in Burp, it +will start a REPL on port 6969 that can be accessed from any REPL +client (such as Emacs + Cider). + + +# Special thanks + +https://github.com/ntestoc3/ for laying the groundwork. diff --git a/build.clj b/build.clj new file mode 100644 index 0000000..11e2714 --- /dev/null +++ b/build.clj @@ -0,0 +1,47 @@ +(ns build + (:refer-clojure :exclude [test]) + (:require [clojure.tools.build.api :as b])) + +(def lib 'net.clojars.subgraph/burp-clj-montoya) +(def version "0.1.0-SNAPSHOT") +(def main 'burp-clj-montoya.burp-clj-montoya) +(def class-dir "target/classes") + +(defn test "Run all the tests." [opts] + (let [basis (b/create-basis {:aliases [:test]}) + cmds (b/java-command + {:basis basis + :main 'clojure.main + :main-args ["-m" "cognitect.test-runner"]}) + {:keys [exit]} (b/process cmds)] + (when-not (zero? exit) (throw (ex-info "Tests failed" {})))) + opts) + +(defn- uber-opts [opts] + (assoc opts + :lib lib :main main + :uber-file (format "target/%s-%s.jar" lib version) + :basis (b/create-basis {}) + :class-dir class-dir + :src-dirs ["src"] + :ns-compile [main])) + +(defn compile-java [_] + (b/javac {:src-dirs ["java"] + :class-dir class-dir + :basis (b/create-basis {:project "deps.edn"})})) + ;;:javac-opts ["-source" "8" "-target" "8"]})) + +(defn ci "Run the CI pipeline of tests (and build the uberjar)." [opts] + (test opts) + (b/delete {:path "target"}) + (compile-java nil) + (let [opts (uber-opts opts)] + (println "\nCopying source...") + (b/copy-dir {:src-dirs ["resources" "src"] :target-dir class-dir}) + (println (str "\nCompiling " main "...")) + (b/compile-clj opts) + (println "\nBuilding JAR...") + (b/uber opts)) + opts) + diff --git a/deps.edn b/deps.edn new file mode 100644 index 0000000..2aed7fa --- /dev/null +++ b/deps.edn @@ -0,0 +1,19 @@ +{:paths ["src" "resources"] + :deps {org.clojure/clojure {:mvn/version "1.11.1"} + net.portswigger.burp.extensions/montoya-api {:mvn/version "2023.3"} + nrepl/nrepl {:mvn/version "1.0.0"} + cider/cider-nrepl {:mvn/version "0.30.0"} + com.taoensso/timbre {:mvn/version "6.1.0"}} + :aliases + {:run-m {:main-opts ["-m" "burp-clj-montoya"]} + :run-x {:ns-default burp-clj-montoya + :exec-fn greet + :exec-args {:name "Clojure"}} + :build {:deps {io.github.clojure/tools.build + {:git/tag "v0.9.2" :git/sha "fe6b140"} + net.portswigger.burp.extensions/montoya-api {:mvn/version "2023.3"}} + :ns-default build} + :test {:extra-paths ["test"] + :extra-deps {org.clojure/test.check {:mvn/version "1.1.1"} + io.github.cognitect-labs/test-runner + {:git/tag "v0.5.1" :git/sha "dfb30dd"}}}}} diff --git a/doc/intro.md b/doc/intro.md new file mode 100644 index 0000000..7b1c089 --- /dev/null +++ b/doc/intro.md @@ -0,0 +1,3 @@ +# Introduction to burp-clj-montoya + +TODO: write [great documentation](http://jacobian.org/writing/what-to-write/) diff --git a/java/burp/BurpExtender.java b/java/burp/BurpExtender.java new file mode 100644 index 0000000..caf568d --- /dev/null +++ b/java/burp/BurpExtender.java @@ -0,0 +1,28 @@ +package burp_clj_montoya; + +import clojure.java.api.Clojure; +import clojure.lang.IFn; + +import burp.api.montoya.BurpExtension; +import burp.api.montoya.MontoyaApi; +import burp.api.montoya.logging.Logging; + +public class BurpExtender implements BurpExtension +{ + @Override + public void initialize(MontoyaApi api) + { + + Thread.currentThread().setContextClassLoader(this.getClass().getClassLoader()); + IFn require = Clojure.var("clojure.core", "require"); + + // API hook is stored globally in a state atom for later use + require.invoke(Clojure.read("burp-clj-montoya.extender")); + IFn set_api = Clojure.var("burp-clj-montoya.extender", "set!"); + set_api.invoke(api); + + require.invoke(Clojure.read("burp-clj-montoya.core")); + IFn register = Clojure.var("burp-clj-montoya.core", "register"); + register.invoke(api); + } +} diff --git a/resources/.keep b/resources/.keep new file mode 100644 index 0000000..e69de29 diff --git a/src/burp_clj_montoya/burp_clj_montoya.clj b/src/burp_clj_montoya/burp_clj_montoya.clj new file mode 100644 index 0000000..026648c --- /dev/null +++ b/src/burp_clj_montoya/burp_clj_montoya.clj @@ -0,0 +1,12 @@ +(ns burp-clj-montoya.burp-clj-montoya + (:gen-class)) + +(defn greet + "Callable entry point to the application." + [data] + (println (str "Hello, " (or (:name data) "World") "!"))) + +(defn -main + "I don't do a whole lot ... yet." + [& args] + (greet {:name (first args)})) diff --git a/src/burp_clj_montoya/burp_extender.clj b/src/burp_clj_montoya/burp_extender.clj new file mode 100644 index 0000000..c16d68a --- /dev/null +++ b/src/burp_clj_montoya/burp_extender.clj @@ -0,0 +1,4 @@ +(ns burp-clj-montoya.burp-extender + (:require [burp-clj-montoya.state :as state]) + + diff --git a/src/burp_clj_montoya/core.clj b/src/burp_clj_montoya/core.clj new file mode 100644 index 0000000..92b87a3 --- /dev/null +++ b/src/burp_clj_montoya/core.clj @@ -0,0 +1,10 @@ +(ns burp-clj-montoya.core + (:require [burp-clj-montoya.nrepl :as nrepl])) + +(defn register [api] + (let [logging (-> api (.logging)) + extension (-> api (.extension))] + (.setName extension "Clojure Montoya Plugin") + (nrepl/stop-nrepl) + (nrepl/start-nrepl logging))) + diff --git a/src/burp_clj_montoya/extender.clj b/src/burp_clj_montoya/extender.clj new file mode 100644 index 0000000..151a1a9 --- /dev/null +++ b/src/burp_clj_montoya/extender.clj @@ -0,0 +1,87 @@ +(ns burp-clj-montoya.extender + (:require [burp-clj-montoya.state :as state]) + (:refer-clojure :exclude [get])) + +(defn set! + [callbacks] + (swap! state/state assoc :extender callbacks)) + +(defn get [] + (:extender @state/state)) + +(defn- add-callback! + "Add callback registration + `class-k` category key + `cb-k` callback key + `cb-obj` callback object" + [class-k cb-k cb-obj] + (swap! state/state update class-k assoc cb-k cb-obj)) + +(defn- remove-callback! + [class-k cb-k] + (swap! state/state update class-k dissoc cb-k)) + +(defn get-callback-obj + "Get callback object" + [class-k cb-k] + (get-in @state/state [class-k cb-k])) + +(defn get-callbacks + "Get callbacks" + [class-k] + (get @state/state class-k)) + +;; (defmacro defcallback +;; [callback get-cb-method-name] +;; (let [cb-name (name callback) +;; cb-key (csk/->kebab-case-keyword callback) +;; register-method (-> (str "register" callback) +;; csk/->camelCaseSymbol) +;; register-name-s (str "register" cb-name "!") +;; register-name (csk/->kebab-case-symbol register-name-s) +;; registered? (-> (str cb-name "-registered?") +;; csk/->kebab-case-symbol) +;; remove-method (-> (str "remove" cb-name) +;; csk/->camelCaseSymbol) +;; remove-name-s (str "remove" cb-name "!") +;; remove-name (csk/->kebab-case-symbol remove-name-s) +;; get-by-key (-> (str "get" cb-name "ByKey") +;; csk/->kebab-case-symbol) +;; get-all-method get-cb-method-name +;; get-all-name (-> (str "get-all-" cb-name) +;; csk/->kebab-case-symbol) +;; remove-all-name (-> (str "remove-all-" cb-name "!") +;; csk/->kebab-case-symbol)] +;; `(do +;; (defn ~registered? [k#] +;; (-> (get-callback-obj ~cb-key k#) +;; boolean)) + +;; (defn ~register-name [k# cb#] +;; (if (~registered? k#) +;; (log/warn ~register-name-s "already registered:" k#) +;; (do +;; ;;(log/info ~register-name-s k#) +;; (. (:extender @state/state) ~register-method cb#) +;; (add-callback! ~cb-key k# cb#)))) + +;; (defn ~remove-name [k#] +;; (if-let [cb# (get-callback-obj ~cb-key k#)] +;; (do +;; (log/info ~remove-name-s k#) +;; (. (:extender @state/state) ~remove-method cb#) +;; (remove-callback! ~cb-key k#)) +;; ;;(log/warn ~remove-name-s "not found:" k#) +;; )) + +;; (defn ~get-by-key [k#] +;; (get-callback-obj ~cb-key k#)) + +;; (defn ~get-all-name [] +;; (. (:extender @state/state) ~get-all-method)) + +;; (defn ~remove-all-name [] +;; ;;(log/info ~remove-all-name) +;; (doseq [[k# obj#] (get-callbacks ~cb-key)] +;; (. (:extender @state/state) ~remove-method obj#) +;; (remove-callback! ~cb-key k#)))))) diff --git a/src/burp_clj_montoya/nrepl.clj b/src/burp_clj_montoya/nrepl.clj new file mode 100644 index 0000000..bac398c --- /dev/null +++ b/src/burp_clj_montoya/nrepl.clj @@ -0,0 +1,65 @@ +(ns burp-clj-montoya.nrepl + (:require [burp-clj-montoya.state :as state] + [cider.nrepl] + [nrepl.server :as server] + [taoensso.timbre :as log]) + (:import [clojure.lang DynamicClassLoader RT])) + +(defmacro with-exception-default + [value & body] + `(try ~@body + (catch Exception e# + (do (log/error e#) + ~value)))) + +(defmacro dyn-call + [ns-sym] + (let [ns (-> (namespace ns-sym) + symbol) + sym (-> (name ns-sym) + symbol)] + `(do + (require '~ns) + (ns-resolve '~ns '~sym)))) + +(def base-class-loader (DynamicClassLoader. (.getClassLoader clojure.lang.Compiler))) +(defn ensure-dynamic-classloader + "Ensure class can be dynamically loaded" + [] + (let [thread (Thread/currentThread) + context-class-loader (.getContextClassLoader thread)] + (when-not (instance? DynamicClassLoader context-class-loader) + (prn "set new dynamic classloader for thread:" (.getName thread)) + (.setContextClassLoader thread base-class-loader)))) + +(defn wrap-classloader + [h] + (fn [msg] + (ensure-dynamic-classloader) + (h msg))) + +(defn started? + [] + (-> (:nrepl-server @state/state) + boolean)) + +(defn stop-nrepl + [] + (when-let [server (:nrepl-server @state/state)] + ((dyn-call nrepl.server/stop-server) server) + (swap! state/state dissoc :nrepl-server))) + +(defn start-nrepl [logging] + (when-not (started?) + (.logToOutput logging "Attempting to start nrepl") + (let [cider-nrepl-handler (dyn-call cider.nrepl/cider-nrepl-handler) + start-server (dyn-call nrepl.server/start-server) + nrepl-server (start-server + :bind "0.0.0.0" + :port 6969 + :handler (-> cider-nrepl-handler + wrap-classloader))] + (swap! state/state assoc :nrepl-server nrepl-server) + (.logToOutput logging "nrepl started.")))) + + diff --git a/src/burp_clj_montoya/proxy.clj b/src/burp_clj_montoya/proxy.clj new file mode 100644 index 0000000..317ffca --- /dev/null +++ b/src/burp_clj_montoya/proxy.clj @@ -0,0 +1,31 @@ +(ns burp-clj-montoya.proxy + (:require [burp-clj-montoya.extender :as extender]) + (:import java.util.ArrayList + burp.api.montoya.proxy.ProxyHttpRequestResponse)) + +(defn disable-intercept + [] + (-> (extender/get) + (.proxy) + (.disableIntercept))) + +(defn enable-intercept + [] + (-> (extender/get) + (.proxy) + (.enableIntercept))) + +(defn history + [] + (-> (extender/get) + (.proxy) + (.history) + (into []))) + +(defn web-socket-history + [] + (-> (extender/get) + (.proxy) + (.webSockethistory))) + + diff --git a/src/burp_clj_montoya/repeater.clj b/src/burp_clj_montoya/repeater.clj new file mode 100644 index 0000000..6d316cf --- /dev/null +++ b/src/burp_clj_montoya/repeater.clj @@ -0,0 +1,15 @@ +(ns burp-clj-montoya.repeater + (:require [burp-clj-montoya.extender :as extender])) + +(defn send-to-repeater + [request] + (-> (extender/get) + (.repeater) + (.sendToRepeater request))) + +(defn send-to-repeater + [request name] + (-> (extender/get) + (.repeater) + (.sendToRepeater request name))) + diff --git a/src/burp_clj_montoya/scope.clj b/src/burp_clj_montoya/scope.clj new file mode 100644 index 0000000..9d2dddd --- /dev/null +++ b/src/burp_clj_montoya/scope.clj @@ -0,0 +1,24 @@ +(ns burp-clj-montoya.scope + (:require [burp-clj-montoya.extender :as extender])) + + +(defn is-in-scope? + [url] + (-> (extender/get) + (.scope) + (.isInScope url))) + +(defn include-in-scope + [url] + (-> (extender/get) + (.scope) + (.includeInScope url))) + +(defn exclude-from-scope + [url] + (-> (extender/get) + (.scope) + (.includeInScope url))) + + + diff --git a/src/burp_clj_montoya/sitemap.clj b/src/burp_clj_montoya/sitemap.clj new file mode 100644 index 0000000..b71d963 --- /dev/null +++ b/src/burp_clj_montoya/sitemap.clj @@ -0,0 +1,28 @@ +(ns burp-clj-montoya.sitemap + (:require [burp-clj-montoya.extender :as extender]) + (:import burp.api.montoya.sitemap.SiteMapFilter + burp.api.montoya.http.message.HttpRequestResponse)) + +(defn site-map-filter + [prefix] + (SiteMapFilter/prefixFilter prefix)) + +(defn issues + ([] (-> (extender/get) + (.siteMap) + (.issues))) + ([prefix] (-> (extender/get) + (.siteMap) + (.issues (site-map-filter prefix))))) + +(defn request-responses + [] + (-> (extender/get) + (.siteMap) + (.requestResponses))) + +(defn request-responses + [prefix] + (-> (extender/get) + (.siteMap) + (.requestResponses (site-map-filter prefix)))) diff --git a/src/burp_clj_montoya/state.clj b/src/burp_clj_montoya/state.clj new file mode 100644 index 0000000..f3b33a4 --- /dev/null +++ b/src/burp_clj_montoya/state.clj @@ -0,0 +1,3 @@ +(ns burp-clj-montoya.state) + +(def state (atom nil)) diff --git a/test/burp_clj_montoya/burp_clj_montoya_test.clj b/test/burp_clj_montoya/burp_clj_montoya_test.clj new file mode 100644 index 0000000..c8bef4f --- /dev/null +++ b/test/burp_clj_montoya/burp_clj_montoya_test.clj @@ -0,0 +1,7 @@ +(ns burp-clj-montoya.burp-clj-montoya-test + (:require [clojure.test :refer :all] + [burp-clj-montoya.burp-clj-montoya :refer :all])) + +(deftest a-test + (testing "FIXME, I fail." + (is (= 1 1))))