Threat Level: green Handler on Duty: Brad Duncan

SANS ISC: BURP 1.6.10 Released SANS ISC InfoSec Forums

Special Webcast: What you need to know about the crypt32.dll vulnerability. Register Now

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
BURP 1.6.10 Released

The fine folks at Portswigger released the lastest version of BURP last week - v1.6.10

New checks include:

  • Server-side include (SSI) injection
  • Server-side Python code injection
  • Leaked RSA private keys
  • Duplicate cookies set

Also new APIs are added to Burp Extender, and changes to SSL handling in newer versions of Java (SNI handling in the handshake)

Full details at: http://releases.portswigger.net/

===============
Rob VandenBrink
Metafore

Rob VandenBrink

521 Posts
ISC Handler

Sign Up for Free or Log In to start participating in the conversation!