Question

After you get the hang of hunting for IDORs, you can try to automate IDOR hunting by using Burp or your own scripts. For example, you can use the Burp intruder to iterate through IDs to find valid ones. The Burp extension Autorize ( https://github.com/Quitten/Autorize/ ) scans for authorization issues by accessing higher-privileged accounts with lower-privileged accounts, whereas the Burp extensions Auto Repeater ( https://github.com/nccgroup/AutoRepeater/ ) and AuthMatrix ( https://github.com/SecurityInnovation/AuthMatrix/ ) allow you to automate the process of switching out cookies, headers, and parameters. For more information on how to use these tools, go to the Extender tab of your Burp window, then to the BAppStore tab to find the extension you want to use.

掌握搜索 IDOR 后，您可以尝试通过使用 Burp 或自己的脚本自动化 IDOR 搜索。例如，您可以使用 Burp Intruder 来迭代 ID 以找到有效的 ID。Burp 扩展名 Autorize（https://github.com/Quitten/Autorize/）通过使用低特权帐户访问高特权帐户来扫描授权问题。而 Burp 扩展名 Auto Repeater（https://github.com/nccgroup/AutoRepeater/）和 AuthMatrix（https://github.com/SecurityInnovation/AuthMatrix/）允许您自动化切换 cookies、头文件和参数的过程。有关如何使用这些工具的更多信息，请转到 Burp 窗口的 Extender 选项卡，然后转到 BAppStore 选项卡以查找要使用的扩展。