Aes-Killer V3.0 - Burp Plugin To Decrypt Aes Encrypted Traffic Of Mobile Apps On The Fly


Burpsuite Plugin to decrypt AES Encrypted traffic on the fly.


Requirements
  • Burpsuite
  • Java

Tested on
  • Burpsuite 1.7.36
  • Windows 10
  • xubuntu 18.04
  • Kali Linux 2018

What it does
  • The IProxyListener decrypt requests too encrypt responses, too an IHttpListener than encrypt requests too decrypt responses.
  • Burp sees the decrypted traffic, including Repeater, Intruder too Scanner, simply the client/mobile app too server come across the encrypted version.
NOTE: Currently back upwards AES/CBC/PKCS5Padding encryption/decryption.

How it works
  • Require AES Encryption Key (Can move obtained yesteryear using frida script or reversing mobile app)
  • Require AES Encryption Initialize Vector (Can move obtained yesteryear using frida script or reversing mobile app)
  • Request Parameter (Leave blank inward illustration of whole asking body)
  • Response Parameter (Leave blank inward illustration of whole reply body)
  • Character Separated amongst infinite for obfuscation on request/response (In illustration of Offuscation)
  • URL/Host of target to decrypt/encrypt asking too response

How to Install
Download jolt file from Release too add together inward burpsuite



Original Request/Response


Getting AES Encryption Key too IV
  • First setup frida server on IOS too Android device.
  • Launch Application on mobile device.
  • Run this frida script on your host car to popular off AES Encryption Key too IV.

Decrypt Request/Response
  • Provide SecretSpecKey nether Secret Key field
  • Procide IV nether Initialize Vector field
  • Provide Host/URL to filter asking too reply for encryption too decryption
  • Press Start AES Killer

 
 
 
 
 





































































Popular posts from this blog









Kerbrute - A Tool To Perform Kerberos Pre-Auth Bruteforcing




















Image







    Influenza A virus subtype H5N1 tool to speedily bruteforce together with enumerate valid Active Directory  accounts through Kerberos  Pre-Authentication   Grab the latest binaries from the releases page  to acquire started.     Background   This tool grew out of approximately bash scripts  I wrote a few years agone to perform bruteforcing  using the Heimdal Kerberos customer from Linux. I wanted something that didn't demand privileges to install a Kerberos client, together with when I works life the amazing pure Go implementation of Kerberos gokrb5 , I decided to lastly acquire Go together with write this.   Bruteforcing Windows passwords amongst Kerberos is much faster than whatever other approach I know of, together with potentially stealthier since pre-authentication failures produce non trigger that "traditional" An job organisation human relationship failed to log on  final result 4625. With Kerberos, y'all tin validate a username or exam a login past times s








Read more










Cameradar V2.1.0 - Hacks Its Mode Into Rtsp Videosurveillance Cameras




















Image







       An RTSP flow access tool that comes alongside its library   Cameradar allows you lot to   Detect opened upward RTSP hosts  on whatever accessible target host  Detect which device model is streaming  Launch automated dictionary attacks  to larn their stream route  (e.g.: /live.sdp )  Launch automated lexicon attacks to larn the username in addition to password  of the cameras  Retrieve a consummate in addition to user-friendly study of the results        Docker Image for Cameradar  Install docker  on your machine, in addition to run the next command:   docker run -t ullaakut/cameradar -t <target> <other command-line options>   See command-line options .  e.g.: docker run -t ullaakut/cameradar -t 192.168.100.0/24 -l  volition scan the ports 554 in addition to 8554 of hosts on the 192.168.100.0/24 subnetwork in addition to laid on the discovered RTSP streams in addition to volition output debug logs.   YOUR_TARGET  tin hold out a subnet (e.g.: 172.16.100.0/24 ), an IP (








Read more










Efiguard - Disable Patchguard Together With Dse At Kicking Time




















Image







EfiGuard is a portable x64 UEFI  bootkit that patches the Windows kicking manager, kicking loader too center at kicking fourth dimension inward club to disable PatchGuard too Driver Signature Enforcement (DSE).   Features   Currently supports all EFI-compatible versions of Windows x64 e'er released, from Vista SP1 to Server 2019.     Easy to use: tin live on booted from a USB stick via a loader application that automatically finds too boots Windows. The driver tin also live on loaded too configured manually using either the UEFI rhythm out or the loader.     Makes extensive utilization of the Zydis  disassembler  library for fast runtime pedagogy decoding to back upwardly to a greater extent than robust analysis  than what is possible amongst signature matching, which oftentimes requires changes amongst novel OS updates.     Works passively: the driver does non charge or start the Windows kicking manager. Instead it acts on a charge of bootmgfw.efi  yesteryear the firmware kicking 








Read more