How i exploit out-of-band resource load (HTTP) using burp suite extension plugin (taborator)

Issue background

Enter Burp Collaborator

Image for post
Image for post

Detecting external service interaction

Image for post
Image for post

Issue detail

How I exploit :

Image for post
Image for post
Image for post
Image for post

Issue remediation

Written by

Blogger | Security Researcher | Digital forensic analyst | Twitter — @mrunal110

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store