A Burp Suite extender that auto reconginze CAPTCHA and use for intruder payload.
Install
- download this burp extender from here.
- add it to burp suite. you will see a new tab named “reCAPTCHA”, if no error encountered.
prepare
-
visit your target website(or App) with burp proxy enabled, ensure burp recorded http or https traffic of your target.
-
you need to find the request that get the CAPTCHA image, select it and right click to chose "send to reCAPTCHA".
-
switch to reCAPTCHA tab and config the parameters that needed.(https://www.ysdm.net is the only vailiable API currently) you can click the "request" button to test the config.
-
finished the config and test success, now you can use this extender for intruder payload.
use in Intruder
two scene: username or password +CAPTCHA; username +password +CAPTCHA ;
scene one: when only password or only username need change , We can use Pitchfork type to use this . as below:
scene two: both username and password need change, it's more complex. we also use Pitchfork type ,but need to mark username and password as one insert point. like this:
and config payload set 1 use "Custom iterator". combine username and password in the "payload options[custom iterator]"
intruder running like below:
2017-11-01: first demo release.
2018-07-02: support [GSA Captcha Breaker]
201808-07: support https://www.jsdati.com