@soffensive.bsky.social
#BurpSuite Installing BApp files and refreshing the available extensions in Burp Suite, slightly hidden
August 7, 2025 at 7:14 AM
#BurpSuite Installing BApp files and refreshing the available extensions in Burp Suite, slightly hidden
TIL: When you update your hostname in Linux, always update your /etc/hosts file as well and add an entry with 127.0.0.1. Otherwise, you may encounter a delay when running sudo, which will perform DNS lookups for your hostname 🤡
June 16, 2025 at 6:34 AM
TIL: When you update your hostname in Linux, always update your /etc/hosts file as well and add an entry with 127.0.0.1. Otherwise, you may encounter a delay when running sudo, which will perform DNS lookups for your hostname 🤡
New blog post: Long-term Kali Linux usage in VirtualBox. Make sure to always manually install the latest guest additions after each kernel update
soffensive.github.io/posts/variou...
soffensive.github.io/posts/variou...
April 13, 2025 at 2:13 PM
New blog post: Long-term Kali Linux usage in VirtualBox. Make sure to always manually install the latest guest additions after each kernel update
soffensive.github.io/posts/variou...
soffensive.github.io/posts/variou...
If you also missed the new button like me, quickly see your Burp AI credits in the Burp UI at the bottom right:
April 11, 2025 at 9:08 AM
If you also missed the new button like me, quickly see your Burp AI credits in the Burp UI at the bottom right:
New blog post: Long-term Kali Linux Usage in VirtualBox: Disk Resizing Issues, Systemd, and Swap Space
soffensive.github.io/posts/variou...
soffensive.github.io/posts/variou...
Kali Linux Long Term Usage Part 2: Systemd, Partitions, and Swap Space
I am using Kali Linux on a regular basis inside a virtual machine (VirtualBox) and I have maintained my image for a couple of years.
Over the last months and years, the booting time got worse and wors...
soffensive.github.io
April 7, 2025 at 12:18 PM
New blog post: Long-term Kali Linux Usage in VirtualBox: Disk Resizing Issues, Systemd, and Swap Space
soffensive.github.io/posts/variou...
soffensive.github.io/posts/variou...
New blog post: Long-term usage of Kali Linux in a VM and optimizations. Part 1: Disk Usage
soffensive.github.io/posts/variou...
soffensive.github.io/posts/variou...
Kali Linux Long Term Usage Part 1
I am using Kali Linux on a regular basis inside a virtual machine (VirtualBox) and I have maintained my image for a couple of years.
Over the last months and years, the booting time got worse and wors...
soffensive.github.io
March 30, 2025 at 3:08 PM
New blog post: Long-term usage of Kali Linux in a VM and optimizations. Part 1: Disk Usage
soffensive.github.io/posts/variou...
soffensive.github.io/posts/variou...
Wondered why my system occupied so much space and it turned out Go consumed a lot for caching over the years...
go clean -modcache
go clean -cache
go clean -testcache
go clean -fuzzcache
Thanks for 30 gigs of space!
scripter.co/cleaning-up-...
go clean -modcache
go clean -cache
go clean -testcache
go clean -fuzzcache
Thanks for 30 gigs of space!
scripter.co/cleaning-up-...
March 26, 2025 at 11:29 AM
Wondered why my system occupied so much space and it turned out Go consumed a lot for caching over the years...
go clean -modcache
go clean -cache
go clean -testcache
go clean -fuzzcache
Thanks for 30 gigs of space!
scripter.co/cleaning-up-...
go clean -modcache
go clean -cache
go clean -testcache
go clean -fuzzcache
Thanks for 30 gigs of space!
scripter.co/cleaning-up-...
If you want to use Bruno (www.usebruno.com) with Burp, try this:
export NODE_TLS_REJECT_UNAUTHORIZED=0; bruno
or to allow a specific CA only:
export NODE_EXTRA_CA_CERTS=~/burpca.pem; bruno
The current Bruno UI settings for certificate validation don't work (v2.0.1)
export NODE_TLS_REJECT_UNAUTHORIZED=0; bruno
or to allow a specific CA only:
export NODE_EXTRA_CA_CERTS=~/burpca.pem; bruno
The current Bruno UI settings for certificate validation don't work (v2.0.1)
March 26, 2025 at 9:04 AM
If you want to use Bruno (www.usebruno.com) with Burp, try this:
export NODE_TLS_REJECT_UNAUTHORIZED=0; bruno
or to allow a specific CA only:
export NODE_EXTRA_CA_CERTS=~/burpca.pem; bruno
The current Bruno UI settings for certificate validation don't work (v2.0.1)
export NODE_TLS_REJECT_UNAUTHORIZED=0; bruno
or to allow a specific CA only:
export NODE_EXTRA_CA_CERTS=~/burpca.pem; bruno
The current Bruno UI settings for certificate validation don't work (v2.0.1)
Reposted
Interesting: this webb app uses the "X-Forwarded-Host" header with the requested URL to built the final URL. The XFH header can include path and parameters, not just the host, and everything is combined.
This gave me an easy 403 bypass at the proxy level, but I wonder what else can be done...
This gave me an easy 403 bypass at the proxy level, but I wonder what else can be done...
December 3, 2024 at 7:39 AM
Interesting: this webb app uses the "X-Forwarded-Host" header with the requested URL to built the final URL. The XFH header can include path and parameters, not just the host, and everything is combined.
This gave me an easy 403 bypass at the proxy level, but I wonder what else can be done...
This gave me an easy 403 bypass at the proxy level, but I wonder what else can be done...