Release 0.0.5

CHANGELOG.md

@@ -18,4 +18,10 @@
 ## [0.0.4] - 2024-08-27
 
 ### Added
-- HTTP/2 to HTTP/1.1 downgrade
+- HTTP/2 to HTTP/1.1 downgrade
+
+## [0.0.5] - 2024-09-04
+
+### Fixed 
+- Fixed Firefox and Chrome User-Agent to the latest version
+- Response notes

README.md

@@ -12,7 +12,7 @@ Burp Suite extension that mutates ciphers to bypass TLS-fingerprint based bot de
 ## Build Instructions
 * Ensure that Java JDK 17 or newer is installed
 * From root of project, run the command `./gradlew jar`
-* This should place the JAR file `Bypass-Bot-Detection-0.0.1.jar` within the `build/libs` directory
+* This should place the JAR file `Bypass-Bot-Detection-0.0.5.jar` within the `build/libs` directory
 * This can be loaded into Burp by navigating to the `Extensions` tab, `Installed` sub-tab, clicking `Add` and loading
   the JAR file
 * This BApp is using the newer Montoya API, so it's best to use the latest version of Burp (try the earlier adopter

build.gradle

@@ -3,7 +3,7 @@ plugins {
 }
 
 group = 'net.portswigger.burp.extensions'
-version = '0.0.4'
+version = '0.0.5'
 description = 'bypass-bot-detection'
 
 repositories {

src/main/java/net/portswigger/burp/extensions/BypassBotDetection.java

@@ -18,8 +18,7 @@ public void initialize(MontoyaApi montoyaApi) {
         try {
             new Utilities(montoyaApi);
             BlockingQueue<Runnable> tasks = new LinkedBlockingQueue<>();
-            int processors = Runtime.getRuntime().availableProcessors();
-            ThreadPoolExecutor taskEngine = new ThreadPoolExecutor(processors, processors*2, 1, TimeUnit.MINUTES, tasks);
+            ThreadPoolExecutor taskEngine = new ThreadPoolExecutor(1, 1, 1, TimeUnit.MINUTES, tasks);
             Utilities.saveTLSSettings();
             montoyaApi.userInterface().registerContextMenuItemsProvider(new TLSContextMenuItemsProvider(taskEngine));
             montoyaApi.logging().logToOutput(Utilities.getResourceString("greetings"));

src/main/java/net/portswigger/burp/extensions/Constants.java

@@ -32,11 +32,11 @@ public class Constants {
 
     public static Map<String,String> FIREFOX_PLATFORMS = Map.of(
             "Windows",
-            "Windows NT 10.0; Win64; x64; rv:129.0",
+            "Windows NT 10.0; Win64; x64; rv:130.0",
             "Mac",
-            "Macintosh; Intel Mac OS X 14.6; rv:129.0",
+            "Macintosh; Intel Mac OS X 14.6; rv:130.0",
             "Linux",
-            "X11; Linux x86_64; rv:129.0");
+            "X11; Linux x86_64; rv:130.0");
     public static Map<String,String> CHROME_PLATFORMS = Map.of(
             "Windows",
             "Windows NT 10.0; Win64; x64",
@@ -60,7 +60,7 @@ public class Constants {
     // Browsers
     public static Map<String,String> BROWSERS_USER_AGENTS = Map.of(
             "Firefox", "User-Agent: Mozilla/5.0 (%s) Gecko/20100101 Firefox/129.0",
-            "Chrome", "User-Agent: Mozilla/5.0 (%s) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36",
+            "Chrome", "User-Agent: Mozilla/5.0 (%s) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36",
             "Safari", "User-Agent: Mozilla/5.0 (%s) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.5 Safari/605.1.15"
     );
     public static Map<String,String[]> BROWSERS_PROTOCOLS = Map.of(

src/main/java/net/portswigger/burp/extensions/Utilities.java

@@ -247,7 +247,7 @@ static String getComment(HttpRequestResponse baseRequest) {
         List<ProxyHttpRequestResponse> items = montoyaApi.proxy().history(new ProxyHistoryFilter() {
             @Override
             public boolean matches(ProxyHttpRequestResponse requestResponse) {
-                return requestResponse.finalRequest().equals(baseRequest.request()) &&
+                return requestResponse.hasResponse() && baseRequest.hasResponse() && requestResponse.originalResponse().equals(baseRequest.response()) &&
                         requestResponse.annotations().hasNotes();
             }
         });