Research Academy Daily Swig
My account Customers About Blog Careers Legal Contact Resellers

Burp Suite User Forum

Login to post

helpers indexOf doesn't seem to be working as expected.

Alan | Last updated: May 12, 2022 08:18PM UTC

I'm working with https://github.com/PortSwigger/java-deserializer I have a stream of bytes in a request that should be a serialized java object. Line 145 in JDUtils.java (https://github.com/PortSwigger/java-deserializer/blob/b6f04746206a692883d9418403a2f374f6697c28/src/burp/JDUtils.java#L145) is the following: return helpers.indexOf(content, JDUtils.serializeMagic, false, 0, content.length) > -1; Dumping the byte array thats passed in as the content argument, I clearly see the serializeMagic bytes right after the headers: 13, 10, 13, 10, -84, -19 (cr,nl,cr,nl, serialized object begins). However, the call to indexOf returns -1, not an offset to -84 as expected. What am I missing here ? Thanks in advance!

Michelle, PortSwigger Agent | Last updated: May 17, 2022 08:28AM UTC

Thanks for your message. Extensions are written and maintained by third-party users of Burp, so issues with the extensions should be reported to the authors. You can find the link where you can report issues to the original author here: https://github.com/nccgroup/JDSer-ngng I hope this helps.

You need to Log in to post a reply. Or register here, for free.