Malformed information complicates report processing
Simply making a be aware of this…possibly report it to PortSwigger later or possibly they’ll discover this.
There are some points with information popping out of Burp that make processing sophisticated and trigger me to spend hours making tweaks to information that ought to simply work. Listed here are just a few examples:
The identical discovering kind ID is used for various kinds of findings. Maybe I misunderstand the aim of this worth however there must be a price within the information set which uniquely identifies a discovering with a selected title and outline. The serial quantity seems to be every particular person discovering, so I assumed the discovering kind ID was presupposed to be this distinctive discovering kind worth. Nevertheless, when trying into the main points I can’t use the worth to group objects as a result of it’s used for various kinds of findings:
Discovering Kind 134217728 has a number of names. In a single case it has a reputation indicating a CSRF token is lacking and in one other it signifies that the request confirmed a vulnerability to CSRF. If these are two various things, then make these two totally different findings, however I feel they’ve the identical description.
Discovering Kind 134217728 can be used for a JS Miner Dependency Confusion discovering. That must be a special kind.
Discovering Kind 134217728 can be used for “Weak model of the library ‘jquery’ discovered”.
Discovering Kind 134217728 can be used for “Consumer-Agent HTTP header”.
Discovering Kind 134217728 can be used for “[JS Miner] Secrets and techniques / Credentials”.
Discovering Kind 134217728 can be used for “Collaborator Pingback (HTTP): Referer”
A number of the varieties with a number of findings change the outline and add a line on the finish: “This difficulty was present in a number of places underneath the reported path.” As a result of the outline is just not constant, in the event you’re making an attempt to group on description you’ll get a number of of the identical difficulty.
Some findings shouldn’t have an outline and look like placing the outline within the element area. This causes me to should examine to see if an outline exists, in any other case make the element the outline, in any other case show the element for a selected goal. This processing additional processing could possibly be eradicated if the element, which seems to really be an outline and never particular to a goal, was in the suitable location within the discovering.
Some objects are merely lacking descriptions or remediations.
Take away the HTML.
Separate URLs and descriptions of URLS and let me course of these myself right into a clickable hyperlink. I don’t wish to simply import each URL from each discovering and assume it’s OK.
A number of the particulars for a discovering have various line breaks and spacing. Take away the html tags and make these items constant.
Some findings haven’t any description or no remediation. These values seem to be they need to be required.
The remediation for some findings is “panic”. That isn’t actually useful.
A number of the descriptions have “Assets” embedded in them when there’s a separate area for sources. Transfer these to the right location.
I’ve an inexpensive work round to all of this however just a little information clear up would make my stories run a lot quicker. 🙂
P.S. Burp is superior.
Teri Radichel
For those who preferred this story please clap and comply with:
Medium: Teri Radichel or E mail Checklist: Teri Radichel
Twitter: @teriradichel or @2ndSightLab
Requests companies through LinkedIn: Teri Radichel or IANS Analysis
© 2nd Sight Lab 2022
____________________________________________
Writer:
Cybersecurity for Executives within the Age of Cloud on Amazon
Want Cloud Safety Coaching? 2nd Sight Lab Cloud Safety Coaching
Is your cloud safe? Rent 2nd Sight Lab for a penetration check or safety evaluation.
Have a Cybersecurity or Cloud Safety Query? Ask Teri Radichel by scheduling a name with IANS Analysis.
Cybersecurity & Cloud Safety Assets by Teri Radichel: Cybersecurity and Cloud safety lessons, articles, white papers, shows, and podcasts