Burp Suite User Forum

Login to post

Intruder password probing

ashwani | Last updated: Sep 06, 2020 09:41AM UTC

What technique i use if i want to run intruder where i know password length and want to run it one char by char in single attack where it starts checking for next char as soon as current char is found successfully so that i dont need to re-run for every char using substring and also increase efficiency ?

Ben, PortSwigger Agent | Last updated: Sep 07, 2020 11:30AM UTC

Hi, You could probably create a single Intruder attack with two payload positions and the "Cluster bomb" attack type, and work through all permutations of offsets and character values that way.

You need to Log in to post a reply. Or register here, for free.