Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Using Extractor to replace Authorization: Bearer tokens in scanner causes full PC lockup, requiring hard-reset #5

Open
mdalin opened this issue May 4, 2020 · 0 comments
Open

Using Extractor to replace Authorization: Bearer tokens in scanner causes full PC lockup, requiring hard-reset #5

mdalin opened this issue May 4, 2020 · 0 comments

Comments

@mdalin
Copy link

mdalin commented May 4, 2020

When using Extractor to auto-replace Authorization: Bearer tokens, I can get it to work fine while using Repeater, but as soon as I launch a scan, my entire laptop goes into a hard lockup. No mouse movement, no keyboard response. Only way to recover is to do a hard, power-button reset. This usually winds up corrupting my Burp project file. I've attempted it using Burp 1.75, as well as 2020.4. I've disabled all other extensions, and made sure I'm only scanning a single URL which returns a small amount of JSON. Attached are sanitized requests and responses that were used to extract/inject the parameter, as well as the regexes used.

ExtractorFail.txt
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@mdalin