Web Application – Compass Security Blog

bRPC-Web: A Burp Suite Extension for gRPC-Web

The gRPC framework, and by extension gRPC-Web, is based on a binary data serialization format. This poses a challenge for penetration testers when intercepting browser to server communication with tools such as Burp Suite.

This project was initially started after we unexpectedly encountered gRPC-Web during a penetration test a few years ago. It is important to have adequate tooling available when this technology appears. Today, we are releasing our Burp Suite extension bRPC-Web in the hope that it will prove useful to others during their assessments.

Collaborator Everywhere v2

September 9, 2025 / Andreas Brombach / 0 Comments

Collaborator Everywhere is a well-known extension for Burp Suite Professional to probe and detect out-of-band pingbacks.

We developed an upgrade to the existing extension with several new exiting features. Payloads can now be edited, interactions are displayed in a separate tab and stored with the project file. This makes it easier to detect and analyze any out-of-band communication that typically occurs with SSRF or Host header vulnerabilities.

SAML Raider Release 2.0.0

July 2, 2024 / Tobias Hort-Giess / 0 Comments

SAML Raider is a Burp Suite extension and the tool of choice for many pentesters for testing SAML infrastructures. This blog post should give a brief introduction to what has changed in the new version 2.0.0. From Improving developer and user experience to bug fixes.

Bug Bounty: Insights from Our First-hand Experience

May 7, 2024 / Fabio Poloni / 0 Comments

At Compass Security, we recently launched our managed bug bounty service. We openly invite hunters to probe our publicly exposed services for vulnerabilities. In return for their valuable feedback, we offer monetary bounties up to CHF 5000. This blog posts presents an interesting vulnerability found by a hunter on the bug bounty program of our subsidiary, Hacking-Lab.

New Burp Extension: JWT-scanner

April 23, 2024 / Dario Caluzi / 0 Comments

Authentication and authorization are critical components of any application. Various standards and frameworks have been developed to facilitate the development of such components and make applications more secure. Among them, JSON Web Tokens (JWTs) have become popular choice over the years.

In this article, we discuss commons flaws in JWT-based authentication and present our extension to automatically check for these issues in Burp: JWT-scanner.

Luring the Threat: Lessons from ICS Honeypots in Ukraine and Germany

February 27, 2024 / Christian Feuchter / 0 Comments

In today’s interconnected world, it is a well-known fact that systems with Internet exposure are under continual threat of cyber-attacks. This risk extends from private websites to corporate infrastructure. With the increasing modernization of Industrial Control Systems (ICS), these vital components also become more exposed to such threats. But what is the extent and nature […]

A sneaky attack to your platform

August 22, 2023 / Elisa Nannini / 0 Comments

Nowadays, web developers rely mostly on well-established frameworks to develop their platform or web sites. These frameworks take care of many vulnerabilities like XSS, SQLi, etc. and give the developers a care-free environment.

However, there is one sneaky weakness that can escape the usual checks quite easily and go undetected: SSRF.

SAML Padding Oracle

September 30, 2021 / Philipp Mao / 0 Comments

ArcGIS [1] is a family of software providing geographic information system services. While testing a customer’s ArcGIS architecture we came across a SAML login flow. In this blogpost we show how we found and exploited an AES-CBC padding oracle in this flow.

SAML Raider Release 1.4.0

March 23, 2021 / Emanuel Duss / 0 Comments

SAML Raider 1.4.0 is out which contains several new features like UI changes, new text editor, raw mode, XSW match/replace, parameter name definition and attack templates for XXE and XSLT attacks.

The Good Old DNS Rebinding

February 23, 2021 / Mirko Selber / 0 Comments

A post on how to trick browsers to work as a gateway to internal web servers and IoT devices, the concepts behind and how to easily exploit DNS rebinding using the Singularity of Origin framework.

Compass Security Blog

Offensive Defense