+- Dark C0d3rs (https://darkcoders.wiki)
+-- Forum: SecOps (https://darkcoders.wiki/Forum-SecOps)
+--- Forum: Web & Bug Bounty (https://darkcoders.wiki/Forum-Web-Bug-Bounty)
+--- Thread: Shadow Repeater:AI-enhanced manual testing - Burp Plugin (/Thread-Shadow-Repeater-AI-enhanced-manual-testing-Burp-Plugin)
Shadow Repeater:AI-enhanced manual testing - Burp Plugin - hashXploiter - 02-21-2025
Shadow Repeater monitors your Repeater requests and identifies which parameters you're changing. It then extracts the payloads you've placed in these parameters, and sends them to an AI model which generates variants. Finally, it attacks the target with these payload variations and uses response diffing to identify whether any of them triggered a new interesting code path. This approach allows it to build on a manual tester's expertise to uncover unexpected behaviors, such as unconventional You are not allowed to view links. Register or Login to view. vectors, successful You are not allowed to view links. Register or Login to view. attempts, and even novel vulnerabilities like email splitting attacks.
You can get the source code for You are not allowed to view links. Register or Login to view. and it's available on the BApp store.
Reference : You are not allowed to view links. Register or Login to view.