├── .gitignore ├── .idea ├── .gitignore ├── .name ├── gradle.xml └── misc.xml ├── README.md ├── build.gradle ├── gradle └── wrapper │ ├── gradle-wrapper.jar │ └── gradle-wrapper.properties ├── gradlew ├── gradlew.bat ├── settings.gradle └── src └── main └── java └── burp └── BurpExtender.java /.gitignore: -------------------------------------------------------------------------------- 1 | .gradle 2 | build/ 3 | !gradle/wrapper/gradle-wrapper.jar 4 | !**/src/main/**/build/ 5 | !**/src/test/**/build/ 6 | 7 | ### IntelliJ IDEA ### 8 | .idea/modules.xml 9 | .idea/jarRepositories.xml 10 | .idea/compiler.xml 11 | .idea/libraries/ 12 | *.iws 13 | *.iml 14 | *.ipr 15 | out/ 16 | !**/src/main/**/out/ 17 | !**/src/test/**/out/ 18 | 19 | ### Eclipse ### 20 | .apt_generated 21 | .classpath 22 | .factorypath 23 | .project 24 | .settings 25 | .springBeans 26 | .sts4-cache 27 | bin/ 28 | !**/src/main/**/bin/ 29 | !**/src/test/**/bin/ 30 | 31 | ### NetBeans ### 32 | /nbproject/private/ 33 | /nbbuild/ 34 | /dist/ 35 | /nbdist/ 36 | /.nb-gradle/ 37 | 38 | ### VS Code ### 39 | .vscode/ 40 | 41 | ### Mac OS ### 42 | .DS_Store -------------------------------------------------------------------------------- /.idea/.gitignore: -------------------------------------------------------------------------------- 1 | # 默认忽略的文件 2 | /shelf/ 3 | /workspace.xml 4 | # 基于编辑器的 HTTP 客户端请求 5 | /httpRequests/ 6 | # Datasource local storage ignored files 7 | /dataSources/ 8 | /dataSources.local.xml 9 | -------------------------------------------------------------------------------- /.idea/.name: -------------------------------------------------------------------------------- 1 | bpUnicode -------------------------------------------------------------------------------- /.idea/gradle.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 16 | 17 | -------------------------------------------------------------------------------- /.idea/misc.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- 1 | # Bypass Suite 2 | 3 | **Bypass Suite** 是一个 Burp Suite 插件，旨在帮助安全研究人员绕过 Web 应用防火墙 (WAF) 的防御机制。该插件提供了一些有用的功能，可以用于测试和绕过 WAF 检测，包括 Unicode 编解码、关键词拆分、插入脏数据和随机大小写。 4 | 5 | ## 功能 6 | 7 | - **Unicode Encode**: 将选中的文本转换为 Unicode 编码形式。 8 | - **Unicode Decode**: 将 Unicode 编码的文本转换回原始形式。 9 | - **Split Keyword**: 将选中的文本按照特定规则进行拆分，例如将 `com.wec.kkkk` 拆分为 `'co'+'m.'w'+'ec.k'+'kkk'`。 10 | - **Insert Garbage Data**: 在请求中插入随机生成的键值对，用户可以指定要插入的键值对数量。 11 | - **Random Case**: 对选中的文本进行进行随机大小写变换。 12 | 13 | ## 安装 14 | 15 | 1. 下载[Bypass Suite JAR 文件](https://github.com/Conan924/Bypass-Suite/releases/download/V1.0/BypassSuite-all.jar)。 16 | 2. 打开 Burp Suite。 17 | 3. 转到 "Extender" 标签页，然后选择 "Extensions"。 18 | 4. 点击 "Add" 按钮。 19 | 5. 在弹出的对话框中，选择 "Java" 作为扩展类型，并浏览到下载的 JAR 文件。 20 | 6. 点击 "Next" 并完成安装。 21 | 22 | ## 使用方法 23 | 24 | 1. 在 Burp Suite 中打开一个请求包。 25 | 2. 右键单击请求包，在弹出的上下文菜单中选择 "Bypass Suite"。 26 | 3. 根据需要选择一个操作： 27 | - **Unicode Encode**: 将选中的文本编码为 Unicode。 28 | - **Unicode Decode**: 解码 Unicode 编码的文本。 29 | - **Split Keyword**: 拆分选中的文本。 30 | - **Insert Garbage Data**: 插入随机生成的键值对。弹出对话框要求输入要插入的键值对数量。 31 | - **Random Case**: 对选中的文本进行进行随机大小写变换。 32 | 33 | 4. 插件会自动处理选中的文本并更新请求包。 34 | -------------------------------------------------------------------------------- /build.gradle: -------------------------------------------------------------------------------- 1 | plugins { 2 | id 'java' 3 | } 4 | 5 | repositories { 6 | mavenCentral() 7 | } 8 | 9 | sourceSets { 10 | main { 11 | java { 12 | srcDir './src/main/java' 13 | } 14 | } 15 | } 16 | 17 | tasks.register('fatJar', Jar) { 18 | archivesBaseName = project.name + '-all' 19 | from { configurations.runtimeClasspath.collect { it.isDirectory() ? it : zipTree(it) } } 20 | with jar 21 | } 22 | 23 | dependencies { 24 | implementation 'net.portswigger.burp.extender:burp-extender-api:1.7.22' 25 | } -------------------------------------------------------------------------------- /gradle/wrapper/gradle-wrapper.jar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Conan924/Bypass-Suite/a5dde0c1b2f01ca103b3cdfcb3724b336dd52e76/gradle/wrapper/gradle-wrapper.jar -------------------------------------------------------------------------------- /gradle/wrapper/gradle-wrapper.properties: -------------------------------------------------------------------------------- 1 | #Mon Jul 15 13:25:41 CST 2024 2 | distributionBase=GRADLE_USER_HOME 3 | distributionPath=wrapper/dists 4 | distributionUrl=https\://services.gradle.org/distributions/gradle-8.5-bin.zip 5 | zipStoreBase=GRADLE_USER_HOME 6 | zipStorePath=wrapper/dists 7 | -------------------------------------------------------------------------------- /gradlew: -------------------------------------------------------------------------------- 1 | #!/bin/sh 2 | 3 | # 4 | # Copyright © 2015-2021 the original authors. 5 | # 6 | # Licensed under the Apache License, Version 2.0 (the "License"); 7 | # you may not use this file except in compliance with the License. 8 | # You may obtain a copy of the License at 9 | # 10 | # https://www.apache.org/licenses/LICENSE-2.0 11 | # 12 | # Unless required by applicable law or agreed to in writing, software 13 | # distributed under the License is distributed on an "AS IS" BASIS, 14 | # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 15 | # See the License for the specific language governing permissions and 16 | # limitations under the License. 17 | # 18 | 19 | ############################################################################## 20 | # 21 | # Gradle start up script for POSIX generated by Gradle. 22 | # 23 | # Important for running: 24 | # 25 | # (1) You need a POSIX-compliant shell to run this script. If your /bin/sh is 26 | # noncompliant, but you have some other compliant shell such as ksh or 27 | # bash, then to run this script, type that shell name before the whole 28 | # command line, like: 29 | # 30 | # ksh Gradle 31 | # 32 | # Busybox and similar reduced shells will NOT work, because this script 33 | # requires all of these POSIX shell features: 34 | # * functions; 35 | # * expansions «$var», «${var}», «${var:-default}», «${var+SET}», 36 | # «${var#prefix}», «${var%suffix}», and «$( cmd )»; 37 | # * compound commands having a testable exit status, especially «case»; 38 | # * various built-in commands including «command», «set», and «ulimit». 39 | # 40 | # Important for patching: 41 | # 42 | # (2) This script targets any POSIX shell, so it avoids extensions provided 43 | # by Bash, Ksh, etc; in particular arrays are avoided. 44 | # 45 | # The "traditional" practice of packing multiple parameters into a 46 | # space-separated string is a well documented source of bugs and security 47 | # problems, so this is (mostly) avoided, by progressively accumulating 48 | # options in "$@", and eventually passing that to Java. 49 | # 50 | # Where the inherited environment variables (DEFAULT_JVM_OPTS, JAVA_OPTS, 51 | # and GRADLE_OPTS) rely on word-splitting, this is performed explicitly; 52 | # see the in-line comments for details. 53 | # 54 | # There are tweaks for specific operating systems such as AIX, CygWin, 55 | # Darwin, MinGW, and NonStop. 56 | # 57 | # (3) This script is generated from the Groovy template 58 | # https://github.com/gradle/gradle/blob/master/subprojects/plugins/src/main/resources/org/gradle/api/internal/plugins/unixStartScript.txt 59 | # within the Gradle project. 60 | # 61 | # You can find Gradle at https://github.com/gradle/gradle/. 62 | # 63 | ############################################################################## 64 | 65 | # Attempt to set APP_HOME 66 | 67 | # Resolve links: $0 may be a link 68 | app_path=$0 69 | 70 | # Need this for daisy-chained symlinks. 71 | while 72 | APP_HOME=${app_path%"${app_path##*/}"} # leaves a trailing /; empty if no leading path 73 | [ -h "$app_path" ] 74 | do 75 | ls=$( ls -ld "$app_path" ) 76 | link=${ls#*' -> '} 77 | case $link in #( 78 | /*) app_path=$link ;; #( 79 | *) app_path=$APP_HOME$link ;; 80 | esac 81 | done 82 | 83 | APP_HOME=$( cd "${APP_HOME:-./}" && pwd -P ) || exit 84 | 85 | APP_NAME="Gradle" 86 | APP_BASE_NAME=${0##*/} 87 | 88 | # Add default JVM options here. You can also use JAVA_OPTS and GRADLE_OPTS to pass JVM options to this script. 89 | DEFAULT_JVM_OPTS='"-Xmx64m" "-Xms64m"' 90 | 91 | # Use the maximum available, or set MAX_FD != -1 to use that value. 92 | MAX_FD=maximum 93 | 94 | warn () { 95 | echo "$*" 96 | } >&2 97 | 98 | die () { 99 | echo 100 | echo "$*" 101 | echo 102 | exit 1 103 | } >&2 104 | 105 | # OS specific support (must be 'true' or 'false'). 106 | cygwin=false 107 | msys=false 108 | darwin=false 109 | nonstop=false 110 | case "$( uname )" in #( 111 | CYGWIN* ) cygwin=true ;; #( 112 | Darwin* ) darwin=true ;; #( 113 | MSYS* | MINGW* ) msys=true ;; #( 114 | NONSTOP* ) nonstop=true ;; 115 | esac 116 | 117 | CLASSPATH=$APP_HOME/gradle/wrapper/gradle-wrapper.jar 118 | 119 | 120 | # Determine the Java command to use to start the JVM. 121 | if [ -n "$JAVA_HOME" ] ; then 122 | if [ -x "$JAVA_HOME/jre/sh/java" ] ; then 123 | # IBM's JDK on AIX uses strange locations for the executables 124 | JAVACMD=$JAVA_HOME/jre/sh/java 125 | else 126 | JAVACMD=$JAVA_HOME/bin/java 127 | fi 128 | if [ ! -x "$JAVACMD" ] ; then 129 | die "ERROR: JAVA_HOME is set to an invalid directory: $JAVA_HOME 130 | 131 | Please set the JAVA_HOME variable in your environment to match the 132 | location of your Java installation." 133 | fi 134 | else 135 | JAVACMD=java 136 | which java >/dev/null 2>&1 || die "ERROR: JAVA_HOME is not set and no 'java' command could be found in your PATH. 137 | 138 | Please set the JAVA_HOME variable in your environment to match the 139 | location of your Java installation." 140 | fi 141 | 142 | # Increase the maximum file descriptors if we can. 143 | if ! "$cygwin" && ! "$darwin" && ! "$nonstop" ; then 144 | case $MAX_FD in #( 145 | max*) 146 | MAX_FD=$( ulimit -H -n ) || 147 | warn "Could not query maximum file descriptor limit" 148 | esac 149 | case $MAX_FD in #( 150 | '' | soft) :;; #( 151 | *) 152 | ulimit -n "$MAX_FD" || 153 | warn "Could not set maximum file descriptor limit to $MAX_FD" 154 | esac 155 | fi 156 | 157 | # Collect all arguments for the java command, stacking in reverse order: 158 | # * args from the command line 159 | # * the main class name 160 | # * -classpath 161 | # * -D...appname settings 162 | # * --module-path (only if needed) 163 | # * DEFAULT_JVM_OPTS, JAVA_OPTS, and GRADLE_OPTS environment variables. 164 | 165 | # For Cygwin or MSYS, switch paths to Windows format before running java 166 | if "$cygwin" || "$msys" ; then 167 | APP_HOME=$( cygpath --path --mixed "$APP_HOME" ) 168 | CLASSPATH=$( cygpath --path --mixed "$CLASSPATH" ) 169 | 170 | JAVACMD=$( cygpath --unix "$JAVACMD" ) 171 | 172 | # Now convert the arguments - kludge to limit ourselves to /bin/sh 173 | for arg do 174 | if 175 | case $arg in #( 176 | -*) false ;; # don't mess with options #( 177 | /?*) t=${arg#/} t=/${t%%/*} # looks like a POSIX filepath 178 | [ -e "$t" ] ;; #( 179 | *) false ;; 180 | esac 181 | then 182 | arg=$( cygpath --path --ignore --mixed "$arg" ) 183 | fi 184 | # Roll the args list around exactly as many times as the number of 185 | # args, so each arg winds up back in the position where it started, but 186 | # possibly modified. 187 | # 188 | # NB: a `for` loop captures its iteration list before it begins, so 189 | # changing the positional parameters here affects neither the number of 190 | # iterations, nor the values presented in `arg`. 191 | shift # remove old arg 192 | set -- "$@" "$arg" # push replacement arg 193 | done 194 | fi 195 | 196 | # Collect all arguments for the java command; 197 | # * $DEFAULT_JVM_OPTS, $JAVA_OPTS, and $GRADLE_OPTS can contain fragments of 198 | # shell script including quotes and variable substitutions, so put them in 199 | # double quotes to make sure that they get re-expanded; and 200 | # * put everything else in single quotes, so that it's not re-expanded. 201 | 202 | set -- \ 203 | "-Dorg.gradle.appname=$APP_BASE_NAME" \ 204 | -classpath "$CLASSPATH" \ 205 | org.gradle.wrapper.GradleWrapperMain \ 206 | "$@" 207 | 208 | # Use "xargs" to parse quoted args. 209 | # 210 | # With -n1 it outputs one arg per line, with the quotes and backslashes removed. 211 | # 212 | # In Bash we could simply go: 213 | # 214 | # readarray ARGS < <( xargs -n1 <<<"$var" ) && 215 | # set -- "${ARGS[@]}" "$@" 216 | # 217 | # but POSIX shell has neither arrays nor command substitution, so instead we 218 | # post-process each arg (as a line of input to sed) to backslash-escape any 219 | # character that might be a shell metacharacter, then use eval to reverse 220 | # that process (while maintaining the separation between arguments), and wrap 221 | # the whole thing up as a single "set" statement. 222 | # 223 | # This will of course break if any of these variables contains a newline or 224 | # an unmatched quote. 225 | # 226 | 227 | eval "set -- $( 228 | printf '%s\n' "$DEFAULT_JVM_OPTS $JAVA_OPTS $GRADLE_OPTS" | 229 | xargs -n1 | 230 | sed ' s~[^-[:alnum:]+,./:=@_]~\\&~g; ' | 231 | tr '\n' ' ' 232 | )" '"$@"' 233 | 234 | exec "$JAVACMD" "$@" 235 | -------------------------------------------------------------------------------- /gradlew.bat: -------------------------------------------------------------------------------- 1 | @rem 2 | @rem Copyright 2015 the original author or authors. 3 | @rem 4 | @rem Licensed under the Apache License, Version 2.0 (the "License"); 5 | @rem you may not use this file except in compliance with the License. 6 | @rem You may obtain a copy of the License at 7 | @rem 8 | @rem https://www.apache.org/licenses/LICENSE-2.0 9 | @rem 10 | @rem Unless required by applicable law or agreed to in writing, software 11 | @rem distributed under the License is distributed on an "AS IS" BASIS, 12 | @rem WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 13 | @rem See the License for the specific language governing permissions and 14 | @rem limitations under the License. 15 | @rem 16 | 17 | @if "%DEBUG%" == "" @echo off 18 | @rem ########################################################################## 19 | @rem 20 | @rem Gradle startup script for Windows 21 | @rem 22 | @rem ########################################################################## 23 | 24 | @rem Set local scope for the variables with windows NT shell 25 | if "%OS%"=="Windows_NT" setlocal 26 | 27 | set DIRNAME=%~dp0 28 | if "%DIRNAME%" == "" set DIRNAME=. 29 | set APP_BASE_NAME=%~n0 30 | set APP_HOME=%DIRNAME% 31 | 32 | @rem Resolve any "." and ".." in APP_HOME to make it shorter. 33 | for %%i in ("%APP_HOME%") do set APP_HOME=%%~fi 34 | 35 | @rem Add default JVM options here. You can also use JAVA_OPTS and GRADLE_OPTS to pass JVM options to this script. 36 | set DEFAULT_JVM_OPTS="-Xmx64m" "-Xms64m" 37 | 38 | @rem Find java.exe 39 | if defined JAVA_HOME goto findJavaFromJavaHome 40 | 41 | set JAVA_EXE=java.exe 42 | %JAVA_EXE% -version >NUL 2>&1 43 | if "%ERRORLEVEL%" == "0" goto execute 44 | 45 | echo. 46 | echo ERROR: JAVA_HOME is not set and no 'java' command could be found in your PATH. 47 | echo. 48 | echo Please set the JAVA_HOME variable in your environment to match the 49 | echo location of your Java installation. 50 | 51 | goto fail 52 | 53 | :findJavaFromJavaHome 54 | set JAVA_HOME=%JAVA_HOME:"=% 55 | set JAVA_EXE=%JAVA_HOME%/bin/java.exe 56 | 57 | if exist "%JAVA_EXE%" goto execute 58 | 59 | echo. 60 | echo ERROR: JAVA_HOME is set to an invalid directory: %JAVA_HOME% 61 | echo. 62 | echo Please set the JAVA_HOME variable in your environment to match the 63 | echo location of your Java installation. 64 | 65 | goto fail 66 | 67 | :execute 68 | @rem Setup the command line 69 | 70 | set CLASSPATH=%APP_HOME%\gradle\wrapper\gradle-wrapper.jar 71 | 72 | 73 | @rem Execute Gradle 74 | "%JAVA_EXE%" %DEFAULT_JVM_OPTS% %JAVA_OPTS% %GRADLE_OPTS% "-Dorg.gradle.appname=%APP_BASE_NAME%" -classpath "%CLASSPATH%" org.gradle.wrapper.GradleWrapperMain %* 75 | 76 | :end 77 | @rem End local scope for the variables with windows NT shell 78 | if "%ERRORLEVEL%"=="0" goto mainEnd 79 | 80 | :fail 81 | rem Set variable GRADLE_EXIT_CONSOLE if you need the _script_ return code instead of 82 | rem the _cmd.exe /c_ return code! 83 | if not "" == "%GRADLE_EXIT_CONSOLE%" exit 1 84 | exit /b 1 85 | 86 | :mainEnd 87 | if "%OS%"=="Windows_NT" endlocal 88 | 89 | :omega 90 | -------------------------------------------------------------------------------- /settings.gradle: -------------------------------------------------------------------------------- 1 | rootProject.name = 'bpUnicode' 2 | 3 | -------------------------------------------------------------------------------- /src/main/java/burp/BurpExtender.java: -------------------------------------------------------------------------------- 1 | package burp; 2 | 3 | import javax.swing.*; 4 | import java.awt.event.ActionEvent; 5 | import java.awt.event.ActionListener; 6 | import java.util.ArrayList; 7 | import java.util.List; 8 | import java.util.Random; 9 | 10 | public class BurpExtender implements IBurpExtender, IContextMenuFactory { 11 | 12 | private IBurpExtenderCallbacks callbacks; 13 | 14 | @Override 15 | public void registerExtenderCallbacks(IBurpExtenderCallbacks callbacks) { 16 | this.callbacks = callbacks; 17 | callbacks.setExtensionName("Bypass Suite"); 18 | callbacks.registerContextMenuFactory(this); 19 | } 20 | 21 | @Override 22 | public List createMenuItems(IContextMenuInvocation invocation) { 23 | List menuItems = new ArrayList<>(); 24 | 25 | JMenuItem encodeMenuItem = new JMenuItem("Unicode Encode"); 26 | encodeMenuItem.addActionListener(new ActionListener() { 27 | @Override 28 | public void actionPerformed(ActionEvent e) { 29 | processSelectedText(invocation, true, false, false, false); 30 | } 31 | }); 32 | menuItems.add(encodeMenuItem); 33 | 34 | JMenuItem decodeMenuItem = new JMenuItem("Unicode Decode"); 35 | decodeMenuItem.addActionListener(new ActionListener() { 36 | @Override 37 | public void actionPerformed(ActionEvent e) { 38 | processSelectedText(invocation, false, false, false, false); 39 | } 40 | }); 41 | menuItems.add(decodeMenuItem); 42 | 43 | JMenuItem splitMenuItem = new JMenuItem("Split Keyword"); 44 | splitMenuItem.addActionListener(new ActionListener() { 45 | @Override 46 | public void actionPerformed(ActionEvent e) { 47 | processSelectedText(invocation, false, true, false, false); 48 | } 49 | }); 50 | menuItems.add(splitMenuItem); 51 | 52 | JMenuItem insertGarbageMenuItem = new JMenuItem("Insert Garbage Data"); 53 | insertGarbageMenuItem.addActionListener(new ActionListener() { 54 | @Override 55 | public void actionPerformed(ActionEvent e) { 56 | insertGarbageData(invocation); 57 | } 58 | }); 59 | menuItems.add(insertGarbageMenuItem); 60 | 61 | JMenuItem randomCaseMenuItem = new JMenuItem("Random Case"); 62 | randomCaseMenuItem.addActionListener(new ActionListener() { 63 | @Override 64 | public void actionPerformed(ActionEvent e) { 65 | processSelectedText(invocation, false, false, true, false); 66 | } 67 | }); 68 | menuItems.add(randomCaseMenuItem); 69 | 70 | return menuItems; 71 | } 72 | 73 | private void processSelectedText(IContextMenuInvocation invocation, boolean encode, boolean split, boolean randomCase, boolean insertGarbage) { 74 | IHttpRequestResponse[] messages = invocation.getSelectedMessages(); 75 | if (messages == null || messages.length == 0) { 76 | return; 77 | } 78 | 79 | int[] selectedBounds = invocation.getSelectionBounds(); 80 | if (selectedBounds == null || selectedBounds.length != 2) { 81 | return; 82 | } 83 | 84 | byte[] request = messages[0].getRequest(); 85 | String selectedText = new String(request).substring(selectedBounds[0], selectedBounds[1]); 86 | String processedText = selectedText; 87 | 88 | if (encode) { 89 | processedText = unicodeEncode(selectedText); 90 | } else if (split) { 91 | processedText = splitKeyword(selectedText); 92 | } else if (randomCase) { 93 | processedText = randomCase(selectedText); 94 | } else { 95 | processedText = unicodeDecode(selectedText); 96 | } 97 | 98 | byte[] newRequest = new byte[request.length - selectedText.length() + processedText.length()]; 99 | System.arraycopy(request, 0, newRequest, 0, selectedBounds[0]); 100 | System.arraycopy(processedText.getBytes(), 0, newRequest, selectedBounds[0], processedText.length()); 101 | System.arraycopy(request, selectedBounds[1], newRequest, selectedBounds[0] + processedText.length(), request.length - selectedBounds[1]); 102 | 103 | messages[0].setRequest(newRequest); 104 | } 105 | 106 | private void insertGarbageData(IContextMenuInvocation invocation) { 107 | IHttpRequestResponse[] messages = invocation.getSelectedMessages(); 108 | if (messages == null || messages.length == 0) { 109 | return; 110 | } 111 | 112 | byte[] request = messages[0].getRequest(); 113 | String requestString = new String(request); 114 | 115 | int numKeyValuePairs = getUserInputForGarbageData(); 116 | if (numKeyValuePairs <= 0) { 117 | return; 118 | } 119 | 120 | StringBuilder garbageData = new StringBuilder(); 121 | for (int i = 0; i < numKeyValuePairs; i++) { 122 | garbageData.append(generateRandomString()).append("=").append(generateRandomString()).append("&"); 123 | } 124 | 125 | // Remove the trailing "&" if it exists 126 | if (garbageData.length() > 0 && garbageData.charAt(garbageData.length() - 1) == '&') { 127 | garbageData.setLength(garbageData.length() - 1); 128 | } 129 | 130 | String newRequestString = requestString + "&" + garbageData.toString(); 131 | messages[0].setRequest(newRequestString.getBytes()); 132 | } 133 | 134 | private int getUserInputForGarbageData() { 135 | String input = JOptionPane.showInputDialog("Enter the number of key-value pairs to insert:"); 136 | try { 137 | return Integer.parseInt(input); 138 | } catch (NumberFormatException e) { 139 | return 0; 140 | } 141 | } 142 | 143 | private String generateRandomString() { 144 | String chars = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz"; 145 | Random random = new Random(); 146 | StringBuilder sb = new StringBuilder(); 147 | for (int i = 0; i < 10; i++) { 148 | sb.append(chars.charAt(random.nextInt(chars.length()))); 149 | } 150 | return sb.toString(); 151 | } 152 | 153 | private String unicodeEncode(String input) { 154 | StringBuilder unicodeString = new StringBuilder(); 155 | for (char c : input.toCharArray()) { 156 | unicodeString.append(String.format("\\u%04x", (int) c)); 157 | } 158 | return unicodeString.toString(); 159 | } 160 | 161 | private String unicodeDecode(String input) { 162 | StringBuilder decodedString = new StringBuilder(); 163 | String[] unicodeChars = input.split("\\\\u"); 164 | for (int i = 1; i < unicodeChars.length; i++) { 165 | int code = Integer.parseInt(unicodeChars[i], 16); 166 | decodedString.append((char) code); 167 | } 168 | return decodedString.toString(); 169 | } 170 | 171 | private String splitKeyword(String input) { 172 | StringBuilder splitString = new StringBuilder(); 173 | for (int i = 0; i < input.length(); i++) { 174 | if (i > 0) { 175 | splitString.append("+"); 176 | } 177 | splitString.append("'"); 178 | splitString.append(input.charAt(i)); 179 | splitString.append("'"); 180 | } 181 | return splitString.toString(); 182 | } 183 | 184 | private String randomCase(String input) { 185 | StringBuilder randomCaseString = new StringBuilder(); 186 | Random random = new Random(); 187 | for (char c : input.toCharArray()) { 188 | if (random.nextBoolean()) { 189 | randomCaseString.append(Character.toUpperCase(c)); 190 | } else { 191 | randomCaseString.append(Character.toLowerCase(c)); 192 | } 193 | } 194 | return randomCaseString.toString(); 195 | } 196 | } 197 | --------------------------------------------------------------------------------