Java Fingerprinting using Stack Traces
apt install gradle
make
Either download the release or make sure you have jar file
build/libs/beanstack.jar
.
- Launch Burp
- Create a temporary project or select a new/existing one
- Extender tab
- Extensions subtab
- Click the Add button
- Select the
jar
file - Leave all options as default, click "next", and finish the wizard
Browse to a website with a nice stack trace and make sure it passes through the Burp proxy. It should automatically be picked up, query the API (invisible), and produce an "Issue" in the Dashboard or Target tab.