Burp Extension for automatically finding and decoding insecure BigIP and Netscaler cookies
- Passively scan sites for insecure BigIP and Netscaler cookies
- Automatically decode the cookies
- Only searches in the response, so clear cookies before use if you've visited the site before.
- Download loadbalancer_cookies.jar and load it into Burp Suite using the Extender.
- Visit a website with an insecure load balancer cookie.
- See the issue in the Issues pane with the decoded value.
BigIP:
Netscaler: