Collaborator does't trigger a finding

Question

Collaborator does't trigger a finding

gibzilla opened this issue a year ago · 1 comments

I noticed that when using a collaborator payload "{BC}", there is no finding in the issue activity popping up, even if from the logs I can see a valid payload that should trigger the dns lookup was sent. I can replay the interaction with repeater and I can see that it triggers DNS interactions. I tried with both oastify, as well as burpcollaborator.net as a collaborator server.

I am using Burp Suite Professional v2023.6.2, BurpBounty Free 4.0, and jdk-20.0.1

Answer 1 · 2023-08-22T14:45:15.000Z

Looks like it was due to a mistake on my part. I was adding the custom tag to the second subdomain which made it fail. Like this : rce.{BC}