Burp插件开发：常用对象构造工厂详解<\/h1>

前言<\/h2>

本文是Burp Suite插件开发系列教程的第三篇，重点介绍Burp插件开发中常用的对象构造工厂。这些工厂类能帮助我们更高效地开发Burp插件，特别是实现右键菜单等常见功能。主要内容包括：<\/p>

IContextMenuFactory<\/code>：上下文菜单工厂<\/li>
IMessageEditorTabFactory<\/code>：消息编辑器标签工厂<\/li>

IIntruderPayloadGeneratorFactory<\/code>：Intruder负载生成器工厂<\/li>
<\/ul>
IContextMenuFactory 上下文菜单工厂<\/h2>
核心作用<\/h3>
IContextMenuFactory<\/code> 是Burp Suite扩展开发中的核心接口，用于为Burp的上下文菜单添加自定义功能项：<\/p>

上下文菜单扩展机制<\/strong>：可以在Burp任意位置（如Proxy历史、Repeater请求区等）的右键菜单中添加自定义菜单项<\/li>
动态菜单生成<\/strong>：根据当前上下文动态生成菜单项列表<\/li>
上下文感知<\/strong>：获取触发菜单时的上下文信息<\/li>
<\/ol>
关键方法<\/h3>
必须实现 createMenuItems(IContextMenuInvocation invocation)<\/code> 方法，该方法返回一个JMenuItem<\/code>列表。<\/p>
上下文信息获取<\/h3>
通过IContextMenuInvocation<\/code>参数可获取：<\/p>
invocation.<\/span>getInvocationContext<\/span>()<\/span> \/\/ 获取触发位置(如代理历史、目标站点树等)
<\/span><\/span><\/span><\/span>invocation.<\/span>getSelectedMessages<\/span>()<\/span> \/\/ 获取选中的HTTP消息
<\/span><\/span><\/span><\/span>invocation.<\/span>getSelectionBounds<\/span>()<\/span> \/\/ 获取用户选中的文本范围
<\/span><\/span><\/span><\/code><\/pre>应用场景<\/h3>

对选中的请求\/响应进行自定义处理（如加解密）<\/li>
快速发送请求到其他工具模块<\/li>
标记或注释特定请求<\/li>
集成外部系统操作入口<\/li>
<\/ul>
实现示例<\/h3>
package<\/span> burp;<\/span>
<\/span><\/span>
<\/span><\/span>import<\/span> javax.swing.*;<\/span>
<\/span><\/span>import<\/span> java.awt.event.ActionEvent;<\/span>
<\/span><\/span>import<\/span> java.awt.event.ActionListener;<\/span>
<\/span><\/span>import<\/span> java.io.PrintWriter;<\/span>
<\/span><\/span>import<\/span> java.util.ArrayList;<\/span>
<\/span><\/span>import<\/span> java.util.List;<\/span>
<\/span><\/span>
<\/span><\/span>public<\/span> class<\/span> CustomContextMenu<\/span> implements<\/span> IContextMenuFactory {<\/span>
<\/span><\/span>    private<\/span> final<\/span> IBurpExtenderCallbacks callbacks;<\/span>
<\/span><\/span>    private<\/span> final<\/span> IExtensionHelpers helpers;<\/span>
<\/span><\/span>    private<\/span> PrintWriter stdout;<\/span>
<\/span><\/span>    private<\/span> PrintWriter stderr;<\/span>
<\/span><\/span>
<\/span><\/span>    public<\/span> CustomContextMenu<\/span>(<\/span>IBurpExtenderCallbacks callbacks)<\/span> {<\/span>
<\/span><\/span>        this<\/span>.<\/span>callbacks<\/span> =<\/span> callbacks;<\/span>
<\/span><\/span>        this<\/span>.<\/span>helpers<\/span> =<\/span> callbacks.<\/span>getHelpers<\/span>();<\/span>
<\/span><\/span>        this<\/span>.<\/span>stdout<\/span> =<\/span> new<\/span> PrintWriter(<\/span>callbacks.<\/span>getStdout<\/span>(),<\/span> true<\/span>);<\/span>
<\/span><\/span>        this<\/span>.<\/span>stderr<\/span> =<\/span> new<\/span> PrintWriter(<\/span>callbacks.<\/span>getStderr<\/span>(),<\/span> true<\/span>);<\/span>
<\/span><\/span>    }<\/span>
<\/span><\/span>
<\/span><\/span>    @Override<\/span>
<\/span><\/span>    public<\/span> List<<\/span>JMenuItem><\/span> createMenuItems<\/span>(<\/span>IContextMenuInvocation invocation)<\/span> {<\/span>
<\/span><\/span>        List<<\/span>JMenuItem><\/span> menuItems =<\/span> new<\/span> ArrayList<>();<\/span>
<\/span><\/span>        
<\/span><\/span>        \/\/ 1. 创建基础菜单项
<\/span><\/span><\/span><\/span>        JMenuItem baseItem =<\/span> new<\/span> JMenuItem(<\/span>"自定义处理"<\/span>);<\/span>
<\/span><\/span>        baseItem.<\/span>addActionListener<\/span>(<\/span>new<\/span> ContextMenuActionListener(<\/span>invocation));<\/span>
<\/span><\/span>        
<\/span><\/span>        \/\/ 2. 创建带图标的子菜单
<\/span><\/span><\/span><\/span>        JMenu subMenu =<\/span> new<\/span> JMenu(<\/span>"高级功能"<\/span>);<\/span>
<\/span><\/span>        \/\/ subMenu.setIcon(new ImageIcon(getClass().getResource("\/icon.png")));
<\/span><\/span><\/span><\/span>        
<\/span><\/span>        \/\/ 2.1 子菜单项-请求处理
<\/span><\/span><\/span><\/span>        JMenuItem requestItem =<\/span> new<\/span> JMenuItem(<\/span>"处理请求"<\/span>);<\/span>
<\/span><\/span>        requestItem.<\/span>addActionListener<\/span>(<\/span>e -><\/span> handleRequest(<\/span>invocation));<\/span>
<\/span><\/span>        subMenu.<\/span>add<\/span>(<\/span>requestItem);<\/span>
<\/span><\/span>        
<\/span><\/span>        \/\/ 2.2 子菜单项-响应处理
<\/span><\/span><\/span><\/span>        JMenuItem responseItem =<\/span> new<\/span> JMenuItem(<\/span>"处理响应"<\/span>);<\/span>
<\/span><\/span>        responseItem.<\/span>addActionListener<\/span>(<\/span>e -><\/span> handleResponse(<\/span>invocation));<\/span>
<\/span><\/span>        subMenu.<\/span>add<\/span>(<\/span>responseItem);<\/span>
<\/span><\/span>        
<\/span><\/span>        menuItems.<\/span>add<\/span>(<\/span>baseItem);<\/span>
<\/span><\/span>        menuItems.<\/span>add<\/span>(<\/span>subMenu);<\/span>
<\/span><\/span>        return<\/span> menuItems;<\/span>
<\/span><\/span>    }<\/span>
<\/span><\/span>
<\/span><\/span>    public<\/span> class<\/span> ContextMenuActionListener<\/span> implements<\/span> ActionListener {<\/span>
<\/span><\/span>        IContextMenuInvocation invocation;<\/span>
<\/span><\/span>        
<\/span><\/span>        public<\/span> ContextMenuActionListener<\/span>(<\/span>IContextMenuInvocation invocation)<\/span> {<\/span>
<\/span><\/span>            this<\/span>.<\/span>invocation<\/span> =<\/span> invocation;<\/span>
<\/span><\/span>        }<\/span>
<\/span><\/span>
<\/span><\/span>        @Override<\/span>
<\/span><\/span>        public<\/span> void<\/span> actionPerformed<\/span>(<\/span>ActionEvent e)<\/span> {<\/span>
<\/span><\/span>            \/\/ 处理选中的消息
<\/span><\/span><\/span><\/span>            stdout.<\/span>println<\/span>(<\/span>"CustomContextMenu actionPerformed"<\/span>);<\/span>
<\/span><\/span>            IHttpRequestResponse[]<\/span> messages =<\/span> invocation.<\/span>getSelectedMessages<\/span>();<\/span>
<\/span><\/span>            
<\/span><\/span>            if<\/span> (<\/span>messages !=<\/span> null<\/span>)<\/span> {<\/span>
<\/span><\/span>                stdout.<\/span>println<\/span>(<\/span>"CustomContextMenu actionPerformed1111"<\/span>);<\/span>
<\/span><\/span>                for<\/span> (<\/span>IHttpRequestResponse message :<\/span> messages)<\/span> {<\/span>
<\/span><\/span>                    stdout.<\/span>println<\/span>(<\/span>"CustomContextMenu actionPerformed222"<\/span>);<\/span>
<\/span><\/span>                    processMessage(<\/span>message);<\/span>
<\/span><\/span>                }<\/span>
<\/span><\/span>            }<\/span>
<\/span><\/span>        }<\/span>
<\/span><\/span>    }<\/span>
<\/span><\/span>
<\/span><\/span>    private<\/span> void<\/span> processMessage<\/span>(<\/span>IHttpRequestResponse message)<\/span> {<\/span>
<\/span><\/span>        stdout.<\/span>println<\/span>(<\/span>"CustomContextMenu actionPerformed333"<\/span>);<\/span>
<\/span><\/span>        byte<\/span>[]<\/span> request =<\/span> message.<\/span>getRequest<\/span>();<\/span>
<\/span><\/span>        stdout.<\/span>println<\/span>(<\/span>"Modified Request: "<\/span> +<\/span> new<\/span> String(<\/span>request));<\/span>
<\/span><\/span>        
<\/span><\/span>        List<<\/span>String><\/span> headers =<\/span> helpers.<\/span>analyzeRequest<\/span>(<\/span>request).<\/span>getHeaders<\/span>();<\/span>
<\/span><\/span>        \/\/ 遍历请求头，查找并修改Cookie
<\/span><\/span><\/span><\/span>        for<\/span> (<\/span>int<\/span> j =<\/span> 0<\/span>;<\/span> j <<\/span> headers.<\/span>size<\/span>();<\/span> j++)<\/span> {<\/span>
<\/span><\/span>            if<\/span> (<\/span>headers.<\/span>get<\/span>(<\/span>j).<\/span>startsWith<\/span>(<\/span>"Cookie:"<\/span>))<\/span> {<\/span>
<\/span><\/span>                headers.<\/span>set<\/span>(<\/span>j,<\/span> "Cookie: new_cookie_value=123456"<\/span>);<\/span>
<\/span><\/span>                break<\/span>;<\/span>
<\/span><\/span>            }<\/span>
<\/span><\/span>        }<\/span>
<\/span><\/span>        
<\/span><\/span>        int<\/span> bodyOffset =<\/span> helpers.<\/span>analyzeRequest<\/span>(<\/span>request).<\/span>getBodyOffset<\/span>();<\/span>
<\/span><\/span>        byte<\/span>[]<\/span> body =<\/span> new<\/span> byte<\/span>[<\/span>request.<\/span>length<\/span> -<\/span> bodyOffset];<\/span>
<\/span><\/span>        System.<\/span>arraycopy<\/span>(<\/span>request,<\/span> bodyOffset,<\/span> body,<\/span> 0<\/span>,<\/span> body.<\/span>length<\/span>);<\/span>
<\/span><\/span>        byte<\/span>[]<\/span> modifiedRequest =<\/span> helpers.<\/span>buildHttpMessage<\/span>(<\/span>headers,<\/span> body);<\/span>
<\/span><\/span>        message.<\/span>setRequest<\/span>(<\/span>modifiedRequest);<\/span>
<\/span><\/span>    }<\/span>
<\/span><\/span>    
<\/span><\/span>    private<\/span> void<\/span> handleRequest<\/span>(<\/span>IContextMenuInvocation invocation)<\/span> {<\/span>
<\/span><\/span>        \/\/ 处理请求的具体逻辑
<\/span><\/span><\/span><\/span>    }<\/span>
<\/span><\/span>    
<\/span><\/span>    private<\/span> void<\/span> handleResponse<\/span>(<\/span>IContextMenuInvocation invocation)<\/span> {<\/span>
<\/span><\/span>        \/\/ 处理响应的具体逻辑
<\/span><\/span><\/span><\/span>    }<\/span>
<\/span><\/span>}<\/span>
<\/span><\/span><\/code><\/pre>使用说明<\/h3>

创建自定义菜单类实现IContextMenuFactory<\/code>接口<\/li>
在createMenuItems<\/code>方法中构建菜单项<\/li>
为每个菜单项添加ActionListener<\/code>处理点击事件<\/li>
通过IContextMenuInvocation<\/code>获取上下文信息<\/li>
使用IExtensionHelpers<\/code>辅助处理HTTP消息<\/li>
<\/ol>
IMessageEditorTabFactory 消息编辑器标签工厂<\/h2>
（注：原文未提供这部分内容的具体实现，以下是补充内容）<\/p>
核心作用<\/h3>
IMessageEditorTabFactory<\/code>允许开发者为Burp的消息编辑器添加自定义标签页，用于显示或编辑特定格式的消息内容。<\/p>
关键方法<\/h3>

createNewInstance(IMessageEditorController controller, boolean editable)<\/code>：创建新的标签页实例<\/li>
getTabCaption()<\/code>：返回标签页的显示名称<\/li>
isEnabled(byte[] content, boolean isRequest)<\/code>：确定是否对当前内容启用该标签页<\/li>
<\/ul>
应用场景<\/h3>

显示自定义格式的消息内容（如JSON、XML美化）<\/li>
添加特定协议的解析器<\/li>
实现消息的加解密查看\/编辑<\/li>
<\/ul>
IIntruderPayloadGeneratorFactory Intruder负载生成器工厂<\/h2>
（注：原文未提供这部分内容的具体实现，以下是补充内容）<\/p>
核心作用<\/h3>
IIntruderPayloadGeneratorFactory<\/code>用于创建自定义的Intruder负载生成器，可以动态生成攻击负载。<\/p>
关键方法<\/h3>

createNewInstance(IIntruderAttack attack)<\/code>：创建新的负载生成器实例<\/li>
getGeneratorName()<\/code>：返回生成器的名称<\/li>
<\/ul>
应用场景<\/h3>

生成特定模式的攻击负载<\/li>
实现字典攻击的变体<\/li>
创建基于上下文的动态负载<\/li>
<\/ul>
注册工厂类<\/h2>
在Burp插件的主类中，需要注册这些工厂类：<\/p>
public<\/span> class<\/span> BurpExtender<\/span> implements<\/span> IBurpExtender {<\/span>
<\/span><\/span>    @Override<\/span>
<\/span><\/span>    public<\/span> void<\/span> registerExtenderCallbacks<\/span>(<\/span>IBurpExtenderCallbacks callbacks)<\/span> {<\/span>
<\/span><\/span>        \/\/ 注册上下文菜单工厂
<\/span><\/span><\/span><\/span>        callbacks.<\/span>registerContextMenuFactory<\/span>(<\/span>new<\/span> CustomContextMenu(<\/span>callbacks));<\/span>
<\/span><\/span>        
<\/span><\/span>        \/\/ 注册消息编辑器标签工厂
<\/span><\/span><\/span><\/span>        \/\/ callbacks.registerMessageEditorTabFactory(new CustomMessageEditorTabFactory());
<\/span><\/span><\/span><\/span>        
<\/span><\/span>        \/\/ 注册Intruder负载生成器工厂
<\/span><\/span><\/span><\/span>        \/\/ callbacks.registerIntruderPayloadGeneratorFactory(new CustomPayloadGeneratorFactory());
<\/span><\/span><\/span><\/span>    }<\/span>
<\/span><\/span>}<\/span>
<\/span><\/span><\/code><\/pre>总结<\/h2>
本文详细介绍了Burp插件开发中常用的三种对象构造工厂：<\/p>

IContextMenuFactory<\/code>：用于扩展Burp的右键菜单功能<\/li>
IMessageEditorTabFactory<\/code>：用于添加自定义消息编辑器标签页<\/li>
IIntruderPayloadGeneratorFactory<\/code>：用于创建自定义Intruder负载生成器<\/li>
<\/ol>
掌握这些工厂类的使用，可以大大增强Burp插件的功能和灵活性。开发者可以根据实际需求，选择适当的工厂类来实现特定功能。<\/p>

Burp插件开发：常用对象构造工厂详解<\/h1>

IContextMenuFactory 上下文菜单工厂<\/h2>

关键方法<\/h3>
必须实现 `createMenuItems(IContextMenuInvocation invocation)<\/code> 方法，该方法返回一个JMenuItem<\/code>列表。<\/p>`

IMessageEditorTabFactory 消息编辑器标签工厂<\/h2>
（注：原文未提供这部分内容的具体实现，以下是补充内容）<\/p>

核心作用<\/h3>
`IMessageEditorTabFactory<\/code>允许开发者为Burp的消息编辑器添加自定义标签页，用于显示或编辑特定格式的消息内容。<\/p>`

IIntruderPayloadGeneratorFactory Intruder负载生成器工厂<\/h2>
（注：原文未提供这部分内容的具体实现，以下是补充内容）<\/p>

核心作用<\/h3>
`IIntruderPayloadGeneratorFactory<\/code>用于创建自定义的Intruder负载生成器，可以动态生成攻击负载。<\/p>`

Burp插件开发：常用对象构造工厂详解<\/h1>

IContextMenuFactory 上下文菜单工厂<\/h2>

关键方法<\/h3> 必须实现 createMenuItems(IContextMenuInvocation invocation)<\/code> 方法，该方法返回一个JMenuItem<\/code>列表。<\/p>

IMessageEditorTabFactory 消息编辑器标签工厂<\/h2> （注：原文未提供这部分内容的具体实现，以下是补充内容）<\/p>

核心作用<\/h3> IMessageEditorTabFactory<\/code>允许开发者为Burp的消息编辑器添加自定义标签页，用于显示或编辑特定格式的消息内容。<\/p>

IIntruderPayloadGeneratorFactory Intruder负载生成器工厂<\/h2> （注：原文未提供这部分内容的具体实现，以下是补充内容）<\/p>

核心作用<\/h3> IIntruderPayloadGeneratorFactory<\/code>用于创建自定义的Intruder负载生成器，可以动态生成攻击负载。<\/p>

关键方法<\/h3>
必须实现 `createMenuItems(IContextMenuInvocation invocation)<\/code> 方法，该方法返回一个JMenuItem<\/code>列表。<\/p>`

IMessageEditorTabFactory 消息编辑器标签工厂<\/h2>
（注：原文未提供这部分内容的具体实现，以下是补充内容）<\/p>

核心作用<\/h3>
`IMessageEditorTabFactory<\/code>允许开发者为Burp的消息编辑器添加自定义标签页，用于显示或编辑特定格式的消息内容。<\/p>`

IIntruderPayloadGeneratorFactory Intruder负载生成器工厂<\/h2>
（注：原文未提供这部分内容的具体实现，以下是补充内容）<\/p>

核心作用<\/h3>
`IIntruderPayloadGeneratorFactory<\/code>用于创建自定义的Intruder负载生成器，可以动态生成攻击负载。<\/p>`