Skip to content

jonare/finn-request-signer

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

12 Commits
src/main/java/burp
src/main/java/burp
 
 
target
target
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
pom.xml
pom.xml
 
 

Repository files navigation

finn-requests-signer burp extension

FINN.no's mobile app signs requests to appsgw.finn.no with a FINN-GW-KEY header. This Burp Suite extension resignes all requests with this header, so the requests can be modified as usual with Burp or a downstream proxy.

Use an extension like Logger++ to see the actual modified requests.

Build with mvn assembly:assembly -DdescriptorId=jar-with-dependencies. A current build is included in ./target/finn-request-signer-1.0-SNAPSHOT-jar-with-dependencies.jar.

Algorithm for signing the requests is the property of FINN. Reverse engineered and adapted by Intigriti user jonare. Please consider adding him as a collaborator in reports where this extension was useful.

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages