SlideShare a Scribd company logo

Extending burp with python

Download as PPTX, PDF
L
Luis Goldster

1. The Burp API allows extensions to overcome web application hurdles. Extensions can use IMessageEditorTab to decode custom encodings, processHTTPMessage to handle signed requests, ITab to provide new views of an application, and doPassiveScan to automate tasks with new scanner checks.

Technology
1 of 25
Downloaded 10 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
Extending Burp with Python Defeating web application idiosyncrasies with common-sense, Python and minimal knowledge of Java GUIs
What is Burp?
Purpose of this Talk • Quick tour of Burp APIs with examples to show what can be achieved • Demonstrate that Web app assessment hurdles overcome with minimal coding effort
Why would you need a custom extn? 1. Decode custom encoding/serialization 2. Handle anti-tamper or signed requests 3. Provide a new “view” into an application 4. Automate a manual task with a new scanner check
Setup to run a Python Burp Extn. 1 Download Jython standalone binary 2 Tell Burp where find Jython 3 Load a Python extension Path to Jython binary goes here
The helloworld of Burp extensions from burp import IBurpExtender class BurpExtender(IBurpExtender): # required def registerExtenderCallbacks(self, callbacks): # set our extension name callbacks.setExtensionName("Hello world extension") # write a message to the Burp alerts tab callbacks.issueAlert("Hello alerts") Just writes “Hello alerts” out to alerts tab
1. Problem: Unsupported encoding Application uses an encoding not understood by Burp Examples: Serialised Java, SAP’s weird URLenc variant, SAML, Websphere Portlet Burp APIs: IMessageEditorTab to display decoded content
Solution: new encoder/decoder 1. Tell Burp about your new message editor tab class CustomDecoderTab(IMessageEditorTab): def __init__(self, extender, controller, editable): ... def getTabCaption(self): return "Custom Decoder"
Solution: new decoder/encoder 2. Use setMessage to display decode def setMessage(self, content, isRequest): ... if '!ut' in path: # actual decoding magic omitted content = response.read() content = xml.dom.minidom.parseString(content).toprettyxml() if content: self._txtInput.setText(content) self._currentMessage = content
Websphere portlet state decoder Source: https://github.com/faffi/WebSphere-Portlet-State-Decoder Encoded content on URL Gets decoded in new tab
2. Problem: Signed requests Application requires signature thats generated client side. examples 1. Seen in thick client apps as anti-tamper mechanism 2. AWS API calls are signed for authentication http://rajasaur.blogspot.co.nz/2009/10/hmac-sha-signatures-using-python-for.html Burp API: processHTTPMessage allows us to re-write traffic
Solution: automate request signing 1. Catch an outbound request from burp import IBurpExtender# this function catches requests and responses def processHttpMessage(self, toolFlag, messageIsRequest, currentRequest): # only process requests if not messageIsRequest: return ...
Solution: automate request signing 2. Grab the request body and headers # requestInfo object allows us to easily spit body and headers requestInfo = self._helpers.analyzeRequest(currentRequest) bodyBytes = currentRequest.getRequest()[requestInfo.getBodyOffset():] bodyStr = self._helpers.bytesToString(bodyBytes) headers = requestInfo.getHeaders() newHeaders = list(headers) #it's a Java arraylist; get a python list
Solution: automate request signing 3. Append signature as HTTP Header # Do custom signing shenanigans secret = "SuperSecret123" h = hmac.new(secret, bodyStr, hashlib.sha256) newHeaders.append("Authorization: " + base64.b64encode(h.digest()))
Solution: automate request signing 4. Create and send request newMessage = self._helpers.buildHttpMessage(newHeaders, bodyStr) currentRequest.setRequest(newMessage) Here’s the new Authorization header being sent out
3. Problem: Big apps, lotsa headers Large applications may emit different headers from various locations within the app. Headers can reveal useful info. Eg. Reverse proxy may hand off from backend A to backend B. Burp APIs: processHTTPMessage and ITab to display result
Solution: View of unique headers Keep track of unique headers, filter out uninteresting headers. # insert an entry if the header is 'interesting’ if header_name.lower() not in boring_headers: # and we haven't seen this name/value pair before, log it if header not in self.headers_seen: self.headers_seen.append(header) self._log.add(LogEntry(header, …, … )
Solution: View of unique headers Create a new tab and display collected headers in the new tab. # Give the new tab a name def getTabCaption(self): return "Response Headers” # This adds all the Java UI unpleasantness def getUiComponent(self): return self._splitpane
Solution: View of unique headers List of unique headers displayed in new “Response Headers” tab Clicking item in list shows request/response
4. Problem: Automate a manual task Locate and decode F5 cookies, display as a passive scan result Burp API: doPassiveScan to trigger check code
Solution: create new check 1. doPassiveScan catches request def doPassiveScan(self, baseRequestResponse): # Returns IResponseInfo analyzedResponse = self.helpers.analyzeResponse(baseRequestResponse.getResponse()) analyzedRequest = self.helpers.analyzeRequest(baseRequestResponse) # Get Cookies from IResponseInfo Instance cookieList = analyzedResponse.getCookies()
Solution: create new check 2. Locate BIGIP cookies and decode them # Loop though list of cookies for cookie in cookieList: cookieName = cookie.getName() # Look for BIGIP Cookies if cookieName.lower().startswith("bigip"): f5CookieName = cookieName f5RawCookieValue = cookie.getValue() # Decode and check for RFC 1918 address f5info = decode(f5RawCookieValue)
Solution: create new check 3. Create Issue class to return useful info class PassiveScanIssue(IScanIssue): ... def getIssueName(self): return "Encoded IP Address Discovered in F5 Cookie Value" ... def getIssueDetail(self): msg = "The URL <b>" + str(self.findingurl) + "</b> sets the F5 load balancer cookie <b>"
F5-BigIP Cookie Checker Source: http://blog.secureideas.com/2013/08/burp-extension-for-f5-cookie-detection.html Internal IP address retrieved from encoded cookie
Summary 1. Decode custom encoding/serialization Use IMessageEditorTab interface to display decoded content 2. Handle anti-tamper or signed requests Use processHTTPMessage to catch and rewrite requests 3. Provide a new “view” into an application Use ITab interface to display custom view 4. Automate a manual task with a new scanner check Use doPassiveScan to trigger a check

More Related Content

PPTX
Extending burp with python
Hoang Nguyen
 
PPTX
Cusomizing Burp Suite - Getting the Most out of Burp Extensions
August Detlefsen
 
PDF
Python tools for testing web services over HTTP
Mykhailo Kolesnyk
 
PPTX
Build restful ap is with python and flask
Jeetendra singh
 
PDF
AOP in Python API design
meij200
 
ODP
Intro To Spring Python
gturnquist
 
PDF
The Basic Concept Of IOC
Carl Lu
 
PDF
Connecting with the enterprise - The how and why of connecting to Enterprise ...
Kevin Poorman
 
Extending burp with python
Hoang Nguyen
 
Cusomizing Burp Suite - Getting the Most out of Burp Extensions
August Detlefsen
 
Python tools for testing web services over HTTP
Mykhailo Kolesnyk
 
Build restful ap is with python and flask
Jeetendra singh
 
AOP in Python API design
meij200
 
Intro To Spring Python
gturnquist
 
The Basic Concept Of IOC
Carl Lu
 
Connecting with the enterprise - The how and why of connecting to Enterprise ...
Kevin Poorman
 

What's hot (15)

PDF
ES6 metaprogramming unleashed
Javier Arias Losada
 
PDF
Flask Introduction - Python Meetup
Areski Belaid
 
PDF
Reliable Python REST API (by Volodymyr Hotsyk) - Web Back-End Tech Hangout - ...
Innovecs
 
PDF
Intro to JavaScript
Yakov Fain
 
PDF
AWS Lambda Hands-on: How to Create Phone Call Notifications in a Serverless Way
Srushith Repakula
 
PDF
스프링 실전 가이드
남윤 김
 
PDF
Symfony 2
Kris Wallsmith
 
PDF
iPhone Coding For Web Developers
Matt Biddulph
 
PDF
Python RESTful webservices with Python: Flask and Django solutions
Solution4Future
 
PPTX
Developing on the aloashbei platform
pycharmer
 
KEY
Morpheus configuration engine (slides from Saint Perl-2 conference)
Vyacheslav Matyukhin
 
PDF
Flask RESTful Flask HTTPAuth
Eueung Mulyana
 
PDF
Alex conrad - Pyramid Tweens (PloneConf 2011)
aconrad
 
PPTX
Method and decorator
Celine George
 
PDF
Don't RTFM, WTFM - Open Source Documentation - German Perl Workshop 2010
singingfish
 
ES6 metaprogramming unleashed
Javier Arias Losada
 
Flask Introduction - Python Meetup
Areski Belaid
 
Reliable Python REST API (by Volodymyr Hotsyk) - Web Back-End Tech Hangout - ...
Innovecs
 
Intro to JavaScript
Yakov Fain
 
AWS Lambda Hands-on: How to Create Phone Call Notifications in a Serverless Way
Srushith Repakula
 
스프링 실전 가이드
남윤 김
 
Symfony 2
Kris Wallsmith
 
iPhone Coding For Web Developers
Matt Biddulph
 
Python RESTful webservices with Python: Flask and Django solutions
Solution4Future
 
Developing on the aloashbei platform
pycharmer
 
Morpheus configuration engine (slides from Saint Perl-2 conference)
Vyacheslav Matyukhin
 
Flask RESTful Flask HTTPAuth
Eueung Mulyana
 
Alex conrad - Pyramid Tweens (PloneConf 2011)
aconrad
 
Method and decorator
Celine George
 
Don't RTFM, WTFM - Open Source Documentation - German Perl Workshop 2010
singingfish
 
Ad

Viewers also liked (6)

PPTX
AppSec USA 2015: Customizing Burp Suite
August Detlefsen
 
PPTX
Burp plugin development for java n00bs (44 con)
Marc Wickenden
 
PPTX
Web Hacking With Burp Suite 101
Zack Meyers
 
PPT
Pentesting Using Burp Suite
jasonhaddix
 
PPTX
ZN-2015
Ivan Elkin
 
PPTX
Extending burp with python
Young Alista
 
AppSec USA 2015: Customizing Burp Suite
August Detlefsen
 
Burp plugin development for java n00bs (44 con)
Marc Wickenden
 
Web Hacking With Burp Suite 101
Zack Meyers
 
Pentesting Using Burp Suite
jasonhaddix
 
ZN-2015
Ivan Elkin
 
Extending burp with python
Young Alista
 
Ad

Similar to Extending burp with python (20)

PPTX
Burp Suite Extension Development
NSConclave
 
PDF
Let's read code: python-requests library
Susan Tan
 
PDF
Burp suite
Yashar Shahinzadeh
 
PDF
Burp-ing through your cryptography shield
DefCamp
 
PDF
DevSecCon Singapore 2019: Workshop - Burp extension writing workshop
DevSecCon
 
PDF
Pycon - Python for ethical hackers
Mohammad Reza Kamalifard
 
PDF
Building TweetEngine
ikailan
 
PDF
BSides Lisbon 2013 - All your sites belong to Burp
Tiago Mendo
 
PPTX
PenTest using Python By Purna Chander
nforceit
 
PPTX
WAF Bypass Techniques - Using HTTP Standard and Web Servers’ Behaviour
Soroush Dalili
 
PPTX
Burp Suite Starter
Fadi Abdulwahab
 
PPTX
How Python Empowers Ethical Hackers by Supriya Kumar Mitra
null - The Open Security Community
 
PDF
Http Status Report
ConSanFrancisco123
 
PPTX
Web technologies: HTTP
Piero Fraternali
 
PDF
Let's read code: the python-requests library
Susan Tan
 
PPTX
Create a Custom Plugin in Burp Suite using the Extension
NSConclave
 
PDF
Ruxmon.2015-08.-.proxenet
Christophe Alladoum
 
PDF
If You Tolerate This, Your Child Processes Will Be Next
Bart Leppens
 
PDF
Python Web Interaction
Robert Sanderson
 
PPTX
Consuming APIs with Python
Michael Petychakis
 
Burp Suite Extension Development
NSConclave
 
Let's read code: python-requests library
Susan Tan
 
Burp suite
Yashar Shahinzadeh
 
Burp-ing through your cryptography shield
DefCamp
 
DevSecCon Singapore 2019: Workshop - Burp extension writing workshop
DevSecCon
 
Pycon - Python for ethical hackers
Mohammad Reza Kamalifard
 
Building TweetEngine
ikailan
 
BSides Lisbon 2013 - All your sites belong to Burp
Tiago Mendo
 
PenTest using Python By Purna Chander
nforceit
 
WAF Bypass Techniques - Using HTTP Standard and Web Servers’ Behaviour
Soroush Dalili
 
Burp Suite Starter
Fadi Abdulwahab
 
How Python Empowers Ethical Hackers by Supriya Kumar Mitra
null - The Open Security Community
 
Http Status Report
ConSanFrancisco123
 
Web technologies: HTTP
Piero Fraternali
 
Let's read code: the python-requests library
Susan Tan
 
Create a Custom Plugin in Burp Suite using the Extension
NSConclave
 
Ruxmon.2015-08.-.proxenet
Christophe Alladoum
 
If You Tolerate This, Your Child Processes Will Be Next
Bart Leppens
 
Python Web Interaction
Robert Sanderson
 
Consuming APIs with Python
Michael Petychakis
 

More from Luis Goldster (20)

PPTX
Ruby on rails evaluation
Luis Goldster
 
PPTX
Design patterns
Luis Goldster
 
PPT
Lisp and scheme i
Luis Goldster
 
PPT
Ado.net &amp; data persistence frameworks
Luis Goldster
 
PPTX
Multithreading models.ppt
Luis Goldster
 
PPTX
Business analytics and data mining
Luis Goldster
 
PPTX
Big picture of data mining
Luis Goldster
 
PPTX
Data mining and knowledge discovery
Luis Goldster
 
PPTX
Cache recap
Luis Goldster
 
PPTX
Directory based cache coherence
Luis Goldster
 
PPTX
Hardware managed cache
Luis Goldster
 
PPTX
How analysis services caching works
Luis Goldster
 
PPT
Abstract data types
Luis Goldster
 
PPTX
Optimizing shared caches in chip multiprocessors
Luis Goldster
 
PPTX
Api crash
Luis Goldster
 
PPTX
Object model
Luis Goldster
 
PPTX
Abstraction file
Luis Goldster
 
PPTX
Object oriented analysis
Luis Goldster
 
PPT
Abstract class
Luis Goldster
 
PPTX
Concurrency with java
Luis Goldster
 
Ruby on rails evaluation
Luis Goldster
 
Design patterns
Luis Goldster
 
Lisp and scheme i
Luis Goldster
 
Ado.net &amp; data persistence frameworks
Luis Goldster
 
Multithreading models.ppt
Luis Goldster
 
Business analytics and data mining
Luis Goldster
 
Big picture of data mining
Luis Goldster
 
Data mining and knowledge discovery
Luis Goldster
 
Cache recap
Luis Goldster
 
Directory based cache coherence
Luis Goldster
 
Hardware managed cache
Luis Goldster
 
How analysis services caching works
Luis Goldster
 
Abstract data types
Luis Goldster
 
Optimizing shared caches in chip multiprocessors
Luis Goldster
 
Api crash
Luis Goldster
 
Object model
Luis Goldster
 
Abstraction file
Luis Goldster
 
Object oriented analysis
Luis Goldster
 
Abstract class
Luis Goldster
 
Concurrency with java
Luis Goldster
 

Recently uploaded (20)

PDF
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
PPTX
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
PDF
gpt5_lecture_notes_comprehensive_20250812015547.pdf
Chinchu40
 
PDF
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
PDF
Approach and Philosophy of On baking technology
30anthuong17
 
PDF
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
PDF
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
PDF
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
PPTX
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
PPTX
Cloud computing and distributed systems.
kkkkkhan
 
PPTX
MYSQL Presentation for SQL database connectivity
Swati270511
 
PDF
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
PDF
Optimiser vos workloads AI/ML sur Amazon EC2 et AWS Graviton
Julien SIMON
 
PDF
MIND Revenue Release Quarter 2 2025 Press Release
MIND CTI
 
PDF
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
PPTX
Machine Learning_overview_presentation.pptx
kondavamsidharreddy2
 
PDF
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
PPTX
ACSFv1EN-58255 AWS Academy Cloud Security Foundations.pptx
23bcla24
 
PPTX
Spectroscopy.pptx food analysis technology
nawahassan45
 
PPTX
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
gpt5_lecture_notes_comprehensive_20250812015547.pdf
Chinchu40
 
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
Approach and Philosophy of On baking technology
30anthuong17
 
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
Cloud computing and distributed systems.
kkkkkhan
 
MYSQL Presentation for SQL database connectivity
Swati270511
 
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
Optimiser vos workloads AI/ML sur Amazon EC2 et AWS Graviton
Julien SIMON
 
MIND Revenue Release Quarter 2 2025 Press Release
MIND CTI
 
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
Machine Learning_overview_presentation.pptx
kondavamsidharreddy2
 
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
ACSFv1EN-58255 AWS Academy Cloud Security Foundations.pptx
23bcla24
 
Spectroscopy.pptx food analysis technology
nawahassan45
 
Big Data Technologies - Introduction.pptx
kuthubussaman1
 

Extending burp with python

  • 1. Extending Burp with Python Defeating web application idiosyncrasies with common-sense, Python and minimal knowledge of Java GUIs
  • 3. Purpose of this Talk • Quick tour of Burp APIs with examples to show what can be achieved • Demonstrate that Web app assessment hurdles overcome with minimal coding effort
  • 4. Why would you need a custom extn? 1. Decode custom encoding/serialization 2. Handle anti-tamper or signed requests 3. Provide a new “view” into an application 4. Automate a manual task with a new scanner check
  • 5. Setup to run a Python Burp Extn. 1 Download Jython standalone binary 2 Tell Burp where find Jython 3 Load a Python extension Path to Jython binary goes here
  • 6. The helloworld of Burp extensions from burp import IBurpExtender class BurpExtender(IBurpExtender): # required def registerExtenderCallbacks(self, callbacks): # set our extension name callbacks.setExtensionName("Hello world extension") # write a message to the Burp alerts tab callbacks.issueAlert("Hello alerts") Just writes “Hello alerts” out to alerts tab
  • 7. 1. Problem: Unsupported encoding Application uses an encoding not understood by Burp Examples: Serialised Java, SAP’s weird URLenc variant, SAML, Websphere Portlet Burp APIs: IMessageEditorTab to display decoded content
  • 8. Solution: new encoder/decoder 1. Tell Burp about your new message editor tab class CustomDecoderTab(IMessageEditorTab): def __init__(self, extender, controller, editable): ... def getTabCaption(self): return "Custom Decoder"
  • 9. Solution: new decoder/encoder 2. Use setMessage to display decode def setMessage(self, content, isRequest): ... if '!ut' in path: # actual decoding magic omitted content = response.read() content = xml.dom.minidom.parseString(content).toprettyxml() if content: self._txtInput.setText(content) self._currentMessage = content
  • 10. Websphere portlet state decoder Source: https://github.com/faffi/WebSphere-Portlet-State-Decoder Encoded content on URL Gets decoded in new tab
  • 11. 2. Problem: Signed requests Application requires signature thats generated client side. examples 1. Seen in thick client apps as anti-tamper mechanism 2. AWS API calls are signed for authentication http://rajasaur.blogspot.co.nz/2009/10/hmac-sha-signatures-using-python-for.html Burp API: processHTTPMessage allows us to re-write traffic
  • 12. Solution: automate request signing 1. Catch an outbound request from burp import IBurpExtender# this function catches requests and responses def processHttpMessage(self, toolFlag, messageIsRequest, currentRequest): # only process requests if not messageIsRequest: return ...
  • 13. Solution: automate request signing 2. Grab the request body and headers # requestInfo object allows us to easily spit body and headers requestInfo = self._helpers.analyzeRequest(currentRequest) bodyBytes = currentRequest.getRequest()[requestInfo.getBodyOffset():] bodyStr = self._helpers.bytesToString(bodyBytes) headers = requestInfo.getHeaders() newHeaders = list(headers) #it's a Java arraylist; get a python list
  • 14. Solution: automate request signing 3. Append signature as HTTP Header # Do custom signing shenanigans secret = "SuperSecret123" h = hmac.new(secret, bodyStr, hashlib.sha256) newHeaders.append("Authorization: " + base64.b64encode(h.digest()))
  • 15. Solution: automate request signing 4. Create and send request newMessage = self._helpers.buildHttpMessage(newHeaders, bodyStr) currentRequest.setRequest(newMessage) Here’s the new Authorization header being sent out
  • 16. 3. Problem: Big apps, lotsa headers Large applications may emit different headers from various locations within the app. Headers can reveal useful info. Eg. Reverse proxy may hand off from backend A to backend B. Burp APIs: processHTTPMessage and ITab to display result
  • 17. Solution: View of unique headers Keep track of unique headers, filter out uninteresting headers. # insert an entry if the header is 'interesting’ if header_name.lower() not in boring_headers: # and we haven't seen this name/value pair before, log it if header not in self.headers_seen: self.headers_seen.append(header) self._log.add(LogEntry(header, …, … )
  • 18. Solution: View of unique headers Create a new tab and display collected headers in the new tab. # Give the new tab a name def getTabCaption(self): return "Response Headers” # This adds all the Java UI unpleasantness def getUiComponent(self): return self._splitpane
  • 19. Solution: View of unique headers List of unique headers displayed in new “Response Headers” tab Clicking item in list shows request/response
  • 20. 4. Problem: Automate a manual task Locate and decode F5 cookies, display as a passive scan result Burp API: doPassiveScan to trigger check code
  • 21. Solution: create new check 1. doPassiveScan catches request def doPassiveScan(self, baseRequestResponse): # Returns IResponseInfo analyzedResponse = self.helpers.analyzeResponse(baseRequestResponse.getResponse()) analyzedRequest = self.helpers.analyzeRequest(baseRequestResponse) # Get Cookies from IResponseInfo Instance cookieList = analyzedResponse.getCookies()
  • 22. Solution: create new check 2. Locate BIGIP cookies and decode them # Loop though list of cookies for cookie in cookieList: cookieName = cookie.getName() # Look for BIGIP Cookies if cookieName.lower().startswith("bigip"): f5CookieName = cookieName f5RawCookieValue = cookie.getValue() # Decode and check for RFC 1918 address f5info = decode(f5RawCookieValue)
  • 23. Solution: create new check 3. Create Issue class to return useful info class PassiveScanIssue(IScanIssue): ... def getIssueName(self): return "Encoded IP Address Discovered in F5 Cookie Value" ... def getIssueDetail(self): msg = "The URL <b>" + str(self.findingurl) + "</b> sets the F5 load balancer cookie <b>"
  • 24. F5-BigIP Cookie Checker Source: http://blog.secureideas.com/2013/08/burp-extension-for-f5-cookie-detection.html Internal IP address retrieved from encoded cookie
  • 25. Summary 1. Decode custom encoding/serialization Use IMessageEditorTab interface to display decoded content 2. Handle anti-tamper or signed requests Use processHTTPMessage to catch and rewrite requests 3. Provide a new “view” into an application Use ITab interface to display custom view 4. Automate a manual task with a new scanner check Use doPassiveScan to trigger a check