@@ -0,0 +1,1120 @@
{
"project_options" :{
"connections" :{
"hostname_resolution" :[],
"out_of_scope_requests" :{
"advanced_mode" :false ,
"drop_all_out_of_scope" :false ,
"exclude" :[],
"include" :[],
"scope_option" :" suite"
},
"platform_authentication" :{
"credentials" :[],
"do_platform_authentication" :true ,
"prompt_on_authentication_failure" :false ,
"use_user_options" :true
},
"socks_proxy" :{
"dns_over_socks" :false ,
"host" :" "
"password" :" "
"port" :0 ,
"use_proxy" :false ,
"use_user_options" :true ,
"username" :" "
},
"timeouts" :{
"domain_name_resolution_timeout" :300000 ,
"failed_domain_name_resolution_timeout" :60000 ,
"normal_timeout" :120000 ,
"open_ended_response_timeout" :10000
},
"upstream_proxy" :{
"servers" :[],
"use_user_options" :true
}
},
"http" :{
"redirections" :{
"understand_3xx_status_code" :true ,
"understand_any_status_code_with_location_header" :false ,
"understand_javascript_driven" :false ,
"understand_meta_refresh_tag" :true ,
"understand_refresh_header" :true
},
"status_100_responses" :{
"remove_100_continue_responses" :false ,
"understand_100_continue_responses" :true
},
"streaming_responses" :{
"scope_advanced_mode" :false ,
"store" :true ,
"strip_chunked_encoding_metadata" :true ,
"urls" :[]
}
},
"misc" :{
"collaborator_server" :{
"location" :" "
"poll_over_unencrypted_http" :false ,
"polling_location" :" "
"type" :" default"
},
"logging" :{
"requests" :{
"all_tools" :" "
"extender" :" "
"intruder" :" "
"proxy" :" "
"repeater" :" "
"scanner" :" "
"sequencer" :" "
},
"responses" :{
"all_tools" :" "
"extender" :" "
"intruder" :" "
"proxy" :" "
"repeater" :" "
"scanner" :" "
"sequencer" :" "
}
},
"scheduled_tasks" :{
"tasks" :[]
}
},
"sessions" :{
"cookie_jar" :{
"monitor_extender" :true ,
"monitor_intruder" :true ,
"monitor_proxy" :true ,
"monitor_repeater" :true ,
"monitor_scanner" :true ,
"monitor_sequencer" :false
},
"macros" :{
"macros" :[]
},
"session_handling_rules" :{
"rules" :[
{
"actions" :[
{
"enabled" :true ,
"match_cookies" :" all_except"
"type" :" use_cookies"
}
],
"description" :" Use cookies from Burp's cookie jar"
"enabled" :true ,
"exclude_from_scope" :[],
"include_in_scope" :[],
"named_params" :[],
"restrict_scope_to_named_params" :false ,
"tools_scope" :[
" Target"
" Scanner"
" Intruder"
" Repeater"
" Extender"
],
"url_scope" :" suite"
"url_scope_advanced_mode" :false
}
]
}
},
"ssl" :{
"client_certificates" :{
"certificates" :[],
"use_user_options" :true
},
"negotiation" :{
"allow_unsafe_renegotiation" :false ,
"automatically_select_compatible_ssl_parameters_on_failure" :true ,
"disable_ssl_session_resume" :false ,
"enabled_ciphers" :[],
"enabled_protocols" :[],
"use_platform_default_protocols_and_ciphers" :true
}
}
},
"proxy" :{
"http_history_display_filter" :{
"by_annotation" :{
"show_only_commented_items" :false ,
"show_only_highlighted_items" :false
},
"by_file_extension" :{
"hide_items" :[
" js"
" gif"
" jpg"
" png"
" css"
],
"hide_specific" :false ,
"show_items" :[
" asp"
" aspx"
" jsp"
" php"
],
"show_only_specific" :false
},
"by_listener" :{
"port" :" "
},
"by_mime_type" :{
"show_css" :false ,
"show_flash" :true ,
"show_html" :true ,
"show_images" :false ,
"show_other_binary" :false ,
"show_other_text" :true ,
"show_script" :true ,
"show_xml" :true
},
"by_request_type" :{
"hide_items_without_responses" :false ,
"show_only_in_scope_items" :false ,
"show_only_parameterized_requests" :false
},
"by_search" :{
"case_sensitive" :false ,
"negative_search" :false ,
"regex" :false ,
"term" :" "
},
"by_status_code" :{
"show_2xx" :true ,
"show_3xx" :true ,
"show_4xx" :true ,
"show_5xx" :true
}
},
"intercept_client_requests" :{
"automatically_fix_missing_or_superfluous_new_lines_at_end_of_request" :false ,
"automatically_update_content_length_header_when_the_request_is_edited" :true ,
"do_intercept" :true ,
"rules" :[
{
"boolean_operator" :" and"
"enabled" :true ,
"match_condition" :" (^gif$|^jpg$|^png$|^css$|^js$|^ico$)"
"match_relationship" :" does_not_match"
"match_type" :" file_extension"
},
{
"boolean_operator" :" or"
"enabled" :false ,
"match_relationship" :" contains_parameters"
"match_type" :" request"
},
{
"boolean_operator" :" or"
"enabled" :false ,
"match_condition" :" (get|post)"
"match_relationship" :" does_not_match"
"match_type" :" http_method"
},
{
"boolean_operator" :" and"
"enabled" :false ,
"match_relationship" :" is_in_target_scope"
"match_type" :" url"
}
]
},
"intercept_server_responses" :{
"automatically_update_content_length_header_when_the_response_is_edited" :true ,
"do_intercept" :false ,
"rules" :[
{
"boolean_operator" :" or"
"enabled" :true ,
"match_condition" :" text"
"match_relationship" :" matches"
"match_type" :" content_type_header"
},
{
"boolean_operator" :" or"
"enabled" :false ,
"match_relationship" :" was_modified"
"match_type" :" request"
},
{
"boolean_operator" :" or"
"enabled" :false ,
"match_relationship" :" was_intercepted"
"match_type" :" request"
},
{
"boolean_operator" :" and"
"enabled" :false ,
"match_condition" :" ^304$"
"match_relationship" :" does_not_match"
"match_type" :" status_code"
},
{
"boolean_operator" :" and"
"enabled" :false ,
"match_relationship" :" is_in_target_scope"
"match_type" :" url"
}
]
},
"intercept_web_sockets_messages" :{
"client_to_server_messages" :true ,
"server_to_client_messages" :true
},
"match_replace_rules" :[
{
"comment" :" Emulate IE"
"enabled" :false ,
"is_simple_match" :false ,
"rule_type" :" request_header"
"string_match" :" ^User-Agent.*$"
"string_replace" :" User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)"
},
{
"comment" :" Emulate iOS"
"enabled" :false ,
"is_simple_match" :false ,
"rule_type" :" request_header"
"string_match" :" ^User-Agent.*$"
"string_replace" :" User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 5_1 like Mac OS X) AppleWebKit/534.46 (KHTML, like Gecko) Version/5.1 Mobile/9B176 Safari/7534.48.3"
},
{
"comment" :" Emulate Android"
"enabled" :false ,
"is_simple_match" :false ,
"rule_type" :" request_header"
"string_match" :" ^User-Agent.*$"
"string_replace" :" User-Agent: Mozilla/5.0 (Linux; U; Android 2.2; en-us; Droid Build/FRG22D) AppleWebKit/533.1 (KHTML, like Gecko) Version/4.0 Mobile Safari/533.1"
},
{
"comment" :" Require non-cached response"
"enabled" :false ,
"is_simple_match" :false ,
"rule_type" :" request_header"
"string_match" :" ^If-Modified-Since.*$"
},
{
"comment" :" Require non-cached response"
"enabled" :false ,
"is_simple_match" :false ,
"rule_type" :" request_header"
"string_match" :" ^If-None-Match.*$"
},
{
"comment" :" Hide Referer header"
"enabled" :false ,
"is_simple_match" :false ,
"rule_type" :" request_header"
"string_match" :" ^Referer.*$"
},
{
"comment" :" Require non-compressed responses"
"enabled" :false ,
"is_simple_match" :false ,
"rule_type" :" request_header"
"string_match" :" ^Accept-Encoding.*$"
},
{
"comment" :" Ignore cookies"
"enabled" :false ,
"is_simple_match" :false ,
"rule_type" :" response_header"
"string_match" :" ^Set-Cookie.*$"
},
{
"comment" :" Rewrite Host header"
"enabled" :false ,
"is_simple_match" :false ,
"rule_type" :" request_header"
"string_match" :" ^Host: foo.example.org$"
"string_replace" :" Host: bar.example.org"
},
{
"comment" :" Add spoofed CORS origin"
"enabled" :false ,
"is_simple_match" :true ,
"rule_type" :" request_header"
"string_replace" :" Origin: foo.example.org"
},
{
"comment" :" Remove HSTS headers"
"enabled" :false ,
"is_simple_match" :false ,
"rule_type" :" response_header"
"string_match" :" ^Strict\\ -Transport\\ -Security.*$"
},
{
"comment" :" Disable browser XSS protection"
"enabled" :false ,
"is_simple_match" :true ,
"rule_type" :" response_header"
"string_replace" :" X-XSS-Protection: 0"
}
],
"miscellaneous" :{
"disable_logging_to_history_and_site_map" :false ,
"disable_out_of_scope_logging_to_history_and_site_map" :false ,
"disable_web_interface" :false ,
"remove_unsupported_encodings_from_accept_encoding_headers_in_incoming_requests" :true ,
"set_connection_close_header_on_requests" :true ,
"set_connection_close_header_on_responses" :false ,
"strip_proxy_headers_in_incoming_requests" :true ,
"strip_sec_websocket_extensions_headers_in_incoming_requests" :true ,
"suppress_burp_error_messages_in_browser" :false ,
"unpack_gzip_deflate_in_requests" :false ,
"unpack_gzip_deflate_in_responses" :true ,
"use_http_10_in_requests_to_server" :false ,
"use_http_10_in_responses_to_client" :false
},
"request_listeners" :[
{
"certificate_mode" :" per_host"
"listen_mode" :" loopback_only"
"listener_port" :8080 ,
"running" :true
}
],
"response_modification" :{
"convert_https_links_to_http" :false ,
"enable_disabled_form_fields" :false ,
"highlight_unhidden_fields" :false ,
"remove_all_javascript" :false ,
"remove_input_field_length_limits" :false ,
"remove_javascript_form_validation" :false ,
"remove_object_tags" :false ,
"remove_secure_flag_from_cookies" :false ,
"unhide_hidden_form_fields" :false
},
"ssl_pass_through" :{
"automatically_add_entries_on_client_ssl_negotiation_failure" :false ,
"rules" :[]
},
"web_sockets_history_display_filter" :{
"by_annotation" :{
"show_only_commented_items" :false ,
"show_only_highlighted_items" :false
},
"by_listener" :{
"listener_port" :" "
},
"by_request_type" :{
"hide_incoming_messages" :false ,
"hide_outgoing_messages" :false ,
"show_only_in_scope_items" :false
},
"by_search" :{
"case_sensitive" :false ,
"negative_search" :false ,
"regex" :false ,
"term" :" "
}
}
},
"repeater" :{
"follow_redirections" :" never"
"process_cookies_in_redirections" :false ,
"unpack_gzip_deflate" :true ,
"update_content_length" :true
},
"sequencer" :{
"live_capture" :{
"ignore_abnormal_length_tokens" :true ,
"max_length_deviation" :5 ,
"num_threads" :5 ,
"throttle" :0
},
"token_analysis" :{
"compression" :true ,
"correlation" :true ,
"count" :true ,
"fips_long_run" :true ,
"fips_monobit" :true ,
"fips_poker" :true ,
"fips_runs" :true ,
"spectral" :true ,
"transitions" :true
},
"token_handling" :{
"base_64_decode_before_analyzing" :false ,
"pad_short_tokens_at" :" start"
"pad_with" :" 0"
}
},
"target" :{
"filter" :{
"by_annotation" :{
"show_only_commented_items" :false ,
"show_only_highlighted_items" :false
},
"by_file_extension" :{
"hide_items" :[
" js"
" gif"
" jpg"
" png"
" css"
],
"hide_specific" :false ,
"show_items" :[
" asp"
" aspx"
" jsp"
" php"
],
"show_only_specific" :false
},
"by_folders" :{
"hide_empty_folders" :true
},
"by_mime_type" :{
"show_css" :false ,
"show_flash" :true ,
"show_html" :true ,
"show_images" :false ,
"show_other_binary" :false ,
"show_other_text" :true ,
"show_script" :true ,
"show_xml" :true
},
"by_request_type" :{
"hide_not_found_items" :true ,
"show_only_in_scope_items" :false ,
"show_only_parameterized_requests" :false ,
"show_only_requested_items" :false
},
"by_search" :{
"case_sensitive" :false ,
"negative_search" :false ,
"regex" :false ,
"term" :" "
},
"by_status_code" :{
"show_2xx" :true ,
"show_3xx" :true ,
"show_4xx" :false ,
"show_5xx" :true
}
},
"scope" :{
"advanced_mode" :false ,
"exclude" :[],
"include" :[]
}
},
"user_options" :{
"connections" :{
"platform_authentication" :{
"credentials" :[],
"do_platform_authentication" :true ,
"prompt_on_authentication_failure" :false
},
"socks_proxy" :{
"dns_over_socks" :false ,
"host" :" "
"password" :" "
"port" :0 ,
"use_proxy" :false ,
"username" :" "
},
"upstream_proxy" :{
"servers" :[]
}
},
"display" :{
"character_sets" :{
"mode" :" recognize_automatically"
},
"html_rendering" :{
"allow_http_requests" :true ,
"enable_embedded_browser_sandbox" :true
},
"http_message_display" :{
"font_name" :" Courier"
"font_size" :13 ,
"font_smoothing" :false ,
"highlight_requests" :true ,
"highlight_responses" :true
},
"user_interface" :{
"font_size" :13 ,
"look_and_feel" :" Nimbus"
}
},
"extender" :{
"extensions" :[
{
"bapp_serial_version" :2 ,
"bapp_uuid" :" f89f2837c22c4ab4b772f31522647ed8"
"errors" :" ui"
"extension_file" :" bapps/f89f2837c22c4ab4b772f31522647ed8/build/libs/AutoRepeater-all.jar"
"extension_type" :" java"
"loaded" :false ,
"name" :" Auto Repeater"
"output" :" ui"
},
{
"bapp_serial_version" :9 ,
"bapp_uuid" :" f9bbac8c4acf4aefa4d7dc92a991af2f"
"errors" :" ui"
"extension_file" :" bapps/f9bbac8c4acf4aefa4d7dc92a991af2f/Autorize.py"
"extension_type" :" python"
"loaded" :true ,
"name" :" Autorize"
"output" :" ui"
},
{
"bapp_serial_version" :1 ,
"bapp_uuid" :" f078b9254eab40dc8c562177de3d3b2d"
"errors" :" ui"
"extension_file" :" bapps/f078b9254eab40dc8c562177de3d3b2d/aws.py"
"extension_type" :" python"
"loaded" :false ,
"name" :" AWS Security Checks"
"output" :" ui"
},
{
"bapp_serial_version" :2 ,
"bapp_uuid" :" 47027b96525d4353aea5844781894fb1"
"errors" :" ui"
"extension_file" :" bapps/47027b96525d4353aea5844781894fb1/burp/target/attacksurfacedetector-release-1.13-jar-with-dependencies.jar"
"extension_type" :" java"
"loaded" :false ,
"name" :" Attack Surface Detector"
"output" :" ui"
},
{
"bapp_serial_version" :10 ,
"bapp_uuid" :" b2244cbb6953442cb3c82fa0a0d908fa"
"errors" :" ui"
"extension_file" :" bapps/b2244cbb6953442cb3c82fa0a0d908fa/UploadScanner.py"
"extension_type" :" python"
"loaded" :false ,
"name" :" Upload Scanner"
"output" :" ui"
},
{
"bapp_serial_version" :2 ,
"bapp_uuid" :" 43877b772b6f4a789e53e3dd13709427"
"errors" :" ui"
"extension_file" :" bapps/43877b772b6f4a789e53e3dd13709427/JSBeautifier.py"
"extension_type" :" python"
"loaded" :true ,
"name" :" JSON/JS Beautifier"
"output" :" ui"
},
{
"bapp_serial_version" :6 ,
"bapp_uuid" :" 0ac13c45adff4e31a3ca8dc76dd6286c"
"errors" :" ui"
"extension_file" :" bapps/0ac13c45adff4e31a3ca8dc76dd6286c/build/libs/paramalyzer-all.jar"
"extension_type" :" java"
"loaded" :true ,
"name" :" Paramalyzer"
"output" :" ui"
},
{
"bapp_serial_version" :9 ,
"bapp_uuid" :" 36238b534a78494db9bf2d03f112265c"
"errors" :" ui"
"extension_file" :" bapps/36238b534a78494db9bf2d03f112265c/retirejs-burp-plugin/target/burp-retire-js-3.jar"
"extension_type" :" java"
"loaded" :false ,
"name" :" Retire.js"
"output" :" ui"
},
{
"bapp_serial_version" :5 ,
"bapp_uuid" :" 17d2949a985c4b7ca092728dba871943"
"errors" :" ui"
"extension_file" :" bapps/17d2949a985c4b7ca092728dba871943/build/libs/param-miner-all.jar"
"extension_type" :" java"
"loaded" :false ,
"name" :" Param Miner"
"output" :" ui"
},
{
"bapp_serial_version" :20 ,
"bapp_uuid" :" 65033cbd2c344fbabe57ac060b5dd100"
"errors" :" ui"
"extension_file" :" bapps/65033cbd2c344fbabe57ac060b5dd100/target/hackvertor-1.2-jar-with-dependencies.jar"
"extension_type" :" java"
"loaded" :true ,
"name" :" Hackvertor"
"output" :" ui"
},
{
"bapp_serial_version" :6 ,
"bapp_uuid" :" 470b7057b86f41c396a97903377f3d81"
"errors" :" ui"
"extension_file" :" bapps/470b7057b86f41c396a97903377f3d81/burplogger++.jar"
"extension_type" :" java"
"loaded" :true ,
"name" :" Logger++"
"output" :" ui"
}
],
"java" :{
"folder_for_loading_library_jar_files" :" "
},
"python" :{
"folder_for_loading_modules" :" "
"location_of_jython_standalone_jar_file" :" /Users/asadasivan/burp_files/jython-standalone-2.7.0.jar"
},
"ruby" :{
"location_of_jruby_jar_file" :" "
},
"settings" :{
"automatically_reload_extensions_on_startup" :true ,
"automatically_update_bapps_on_startup" :true
}
},
"misc" :{
"api" :{
"address" :" "
"enabled" :false ,
"insecure_mode" :false ,
"keys" :[],
"listen_mode" :" loopback_only"
"port" :1337
},
"automatic_project_backup" :{
"delete_on_shutdown" :true ,
"enabled" :true ,
"in_scope_only" :false ,
"interval" :30 ,
"show_progress" :true
},
"enable_proxy_interception_at_startup" :" never"
"hotkeys" :[
{
"action" :" send_to_repeater"
"hotkey" :" Ctrl+R"
},
{
"action" :" send_to_intruder"
"hotkey" :" Ctrl+I"
},
{
"action" :" forward_intercepted_proxy_message"
"hotkey" :" Ctrl+F"
},
{
"action" :" toggle_proxy_interception"
"hotkey" :" Ctrl+T"
},
{
"action" :" switch_to_target"
"hotkey" :" Ctrl+Shift+T"
},
{
"action" :" switch_to_proxy"
"hotkey" :" Ctrl+Shift+P"
},
{
"action" :" switch_to_intruder"
"hotkey" :" Ctrl+Shift+I"
},
{
"action" :" switch_to_repeater"
"hotkey" :" Ctrl+Shift+R"
},
{
"action" :" switch_to_project_options"
"hotkey" :" Ctrl+Shift+O"
},
{
"action" :" go_to_previous_tab"
"hotkey" :" Ctrl+Minus"
},
{
"action" :" go_to_next_tab"
"hotkey" :" Ctrl+Equals"
},
{
"action" :" editor_cut"
"hotkey" :" Ctrl+X"
},
{
"action" :" editor_copy"
"hotkey" :" Ctrl+C"
},
{
"action" :" editor_paste"
"hotkey" :" Ctrl+V"
},
{
"action" :" editor_undo"
"hotkey" :" Ctrl+Z"
},
{
"action" :" editor_redo"
"hotkey" :" Ctrl+Y"
},
{
"action" :" editor_select_all"
"hotkey" :" Ctrl+A"
},
{
"action" :" editor_search"
"hotkey" :" Ctrl+S"
},
{
"action" :" editor_go_to_previous_search_match"
"hotkey" :" Ctrl+Comma"
},
{
"action" :" editor_go_to_next_search_match"
"hotkey" :" Ctrl+Period"
},
{
"action" :" editor_url_decode"
"hotkey" :" Ctrl+Shift+U"
},
{
"action" :" editor_url_encode_key_characters"
"hotkey" :" Ctrl+U"
},
{
"action" :" editor_html_decode"
"hotkey" :" Ctrl+Shift+H"
},
{
"action" :" editor_html_encode_key_characters"
"hotkey" :" Ctrl+H"
},
{
"action" :" editor_base64_decode"
"hotkey" :" Ctrl+Shift+B"
},
{
"action" :" editor_base64_encode"
"hotkey" :" Ctrl+B"
},
{
"action" :" editor_backspace_word"
"hotkey" :" Ctrl+Backspace"
},
{
"action" :" editor_delete_word"
"hotkey" :" Ctrl+Delete"
},
{
"action" :" editor_delete_line"
"hotkey" :" Ctrl+D"
},
{
"action" :" editor_go_to_previous_word"
"hotkey" :" Ctrl+Left"
},
{
"action" :" editor_go_to_previous_word_extend_selection"
"hotkey" :" Ctrl+Shift+Left"
},
{
"action" :" editor_go_to_next_word"
"hotkey" :" Ctrl+Right"
},
{
"action" :" editor_go_to_next_word_extend_selection"
"hotkey" :" Ctrl+Shift+Right"
},
{
"action" :" editor_go_to_previous_paragraph"
"hotkey" :" Ctrl+Up"
},
{
"action" :" editor_go_to_previous_paragraph_extend_selection"
"hotkey" :" Ctrl+Shift+Up"
},
{
"action" :" editor_go_to_next_paragraph"
"hotkey" :" Ctrl+Down"
},
{
"action" :" editor_go_to_next_paragraph_extend_selection"
"hotkey" :" Ctrl+Shift+Down"
},
{
"action" :" editor_go_to_start_of_document"
"hotkey" :" Ctrl+Home"
},
{
"action" :" editor_go_to_start_of_document_extend_selection"
"hotkey" :" Ctrl+Shift+Home"
},
{
"action" :" editor_go_to_end_of_document"
"hotkey" :" Ctrl+End"
},
{
"action" :" editor_go_to_end_of_document_extend_selection"
"hotkey" :" Ctrl+Shift+End"
}
],
"out_of_scope_history_logging_action" :" prompt"
"submit_anonymous_feedback" :false ,
"temporary_files_location" :" "
},
"proxy" :{
"http_history" :{
"sort_column" :" #"
"sort_order" :" descending"
},
"websockets_history" :{
"sort_column" :" #"
"sort_order" :" ascending"
}
},
"repeater" :{
"view" :" left_right_split"
},
"ssl" :{
"client_certificates" :{
"certificates" :[]
},
"negotiation" :{
"disable_sni_extension" :false ,
"enable_blocked_algorithms" :true
}
},
"target" :{
"view" :" left_right_split"
}
},
"proxy" :{
"intercept_client_requests" :{
"automatically_fix_missing_or_superfluous_new_lines_at_end_of_request" :false ,
"automatically_update_content_length_header_when_the_request_is_edited" :true ,
"do_intercept" :true ,
"rules" :[
{
"boolean_operator" :" and"
"enabled" :true ,
"match_condition" :" (^gif$|^jpg$|^png$|^css$|^js$|^ico$)"
"match_relationship" :" does_not_match"
"match_type" :" file_extension"
},
{
"boolean_operator" :" or"
"enabled" :false ,
"match_relationship" :" contains_parameters"
"match_type" :" request"
},
{
"boolean_operator" :" or"
"enabled" :false ,
"match_condition" :" (get|post)"
"match_relationship" :" does_not_match"
"match_type" :" http_method"
},
{
"boolean_operator" :" and"
"enabled" :true ,
"match_relationship" :" is_in_target_scope"
"match_type" :" url"
}
]
},
"intercept_server_responses" :{
"automatically_update_content_length_header_when_the_response_is_edited" :true ,
"do_intercept" :true ,
"rules" :[
{
"boolean_operator" :" or"
"enabled" :false ,
"match_condition" :" text"
"match_relationship" :" matches"
"match_type" :" content_type_header"
},
{
"boolean_operator" :" or"
"enabled" :false ,
"match_relationship" :" was_modified"
"match_type" :" request"
},
{
"boolean_operator" :" or"
"enabled" :false ,
"match_relationship" :" was_intercepted"
"match_type" :" request"
},
{
"boolean_operator" :" and"
"enabled" :false ,
"match_condition" :" ^304$"
"match_relationship" :" does_not_match"
"match_type" :" status_code"
},
{
"boolean_operator" :" and"
"enabled" :true ,
"match_relationship" :" is_in_target_scope"
"match_type" :" url"
}
]
},
"miscellaneous" :{
"disable_logging_to_history_and_site_map" :false ,
"disable_out_of_scope_logging_to_history_and_site_map" :true ,
"disable_web_interface" :false ,
"remove_unsupported_encodings_from_accept_encoding_headers_in_incoming_requests" :true ,
"set_connection_close_header_on_requests" :true ,
"set_connection_close_header_on_responses" :false ,
"strip_proxy_headers_in_incoming_requests" :true ,
"strip_sec_websocket_extensions_headers_in_incoming_requests" :true ,
"suppress_burp_error_messages_in_browser" :false ,
"unpack_gzip_deflate_in_requests" :false ,
"unpack_gzip_deflate_in_responses" :true ,
"use_http_10_in_requests_to_server" :false ,
"use_http_10_in_responses_to_client" :false
},
"match_replace_rules" :[
{
"comment" :" Emulate IE"
"enabled" :false ,
"is_simple_match" :false ,
"rule_type" :" request_header"
"string_match" :" ^User-Agent.*$"
"string_replace" :" User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)"
},
{
"comment" :" Emulate iOS"
"enabled" :false ,
"is_simple_match" :false ,
"rule_type" :" request_header"
"string_match" :" ^User-Agent.*$"
"string_replace" :" User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 5_1 like Mac OS X) AppleWebKit/534.46 (KHTML, like Gecko) Version/5.1 Mobile/9B176 Safari/7534.48.3"
},
{
"comment" :" Emulate Android"
"enabled" :false ,
"is_simple_match" :false ,
"rule_type" :" request_header"
"string_match" :" ^User-Agent.*$"
"string_replace" :" User-Agent: Mozilla/5.0 (Linux; U; Android 2.2; en-us; Droid Build/FRG22D) AppleWebKit/533.1 (KHTML, like Gecko) Version/4.0 Mobile Safari/533.1"
},
{
"comment" :" Require non-cached response"
"enabled" :true ,
"is_simple_match" :false ,
"rule_type" :" request_header"
"string_match" :" ^If-Modified-Since.*$"
},
{
"comment" :" Require non-cached response"
"enabled" :true ,
"is_simple_match" :false ,
"rule_type" :" request_header"
"string_match" :" ^If-None-Match.*$"
},
{
"comment" :" Hide Referer header"
"enabled" :false ,
"is_simple_match" :false ,
"rule_type" :" request_header"
"string_match" :" ^Referer.*$"
},
{
"comment" :" Require non-compressed responses"
"enabled" :false ,
"is_simple_match" :false ,
"rule_type" :" request_header"
"string_match" :" ^Accept-Encoding.*$"
},
{
"comment" :" Ignore cookies"
"enabled" :false ,
"is_simple_match" :false ,
"rule_type" :" response_header"
"string_match" :" ^Set-Cookie.*$"
},
{
"comment" :" Rewrite Host header"
"enabled" :false ,
"is_simple_match" :false ,
"rule_type" :" request_header"
"string_match" :" ^Host: foo.example.org$"
"string_replace" :" Host: bar.example.org"
},
{
"comment" :" Add spoofed CORS origin"
"enabled" :false ,
"is_simple_match" :true ,
"rule_type" :" request_header"
"string_replace" :" Origin: foo.example.org"
},
{
"comment" :" Remove HSTS headers"
"enabled" :false ,
"is_simple_match" :false ,
"rule_type" :" response_header"
"string_match" :" ^Strict\\ -Transport\\ -Security.*$"
},
{
"comment" :" Disable browser XSS protection"
"enabled" :false ,
"is_simple_match" :true ,
"rule_type" :" response_header"
"string_replace" :" X-XSS-Protection: 0"
}
],
"response_modification" :{
"convert_https_links_to_http" :false ,
"enable_disabled_form_fields" :false ,
"highlight_unhidden_fields" :false ,
"remove_all_javascript" :false ,
"remove_input_field_length_limits" :false ,
"remove_javascript_form_validation" :false ,
"remove_object_tags" :false ,
"remove_secure_flag_from_cookies" :false ,
"unhide_hidden_form_fields" :true
}
},
"target" :{
"scope" :{
"advanced_mode" :true ,
"exclude" :[
{
"enabled" :true ,
"host" :" ^.*?google\\ ..*$"
"protocol" :" any"
},
{
"enabled" :true ,
"host" :" ^.*?mozilla\\ ..*$"
"protocol" :" any"
},
{
"enabled" :true ,
"host" :" ^.*?firefox\\ ..*$"
"protocol" :" any"
},
{
"enabled" :true ,
"host" :" ^.*?plantronics\\ ..*$"
"protocol" :" any"
},
{
"enabled" :true ,
"host" :" ^.*?polycom\\ ..*$"
"protocol" :" any"
},
{
"enabled" :true ,
"host" :" ^.*?lastpass\\ ..*$"
"protocol" :" any"
}
],
"include" :[]
}
}
}
asadasivan created this gist