This plugin implements the XML signature bypass techniques (Dupe Key Confusion) presented at BSides/BlackHat/DEFCON 2019 by Alvaro Muñoz (@pwntester) and Oleksander Mirosh (@OlekMirosh). For more details about this technique, please refer to the materials that can be found here:
Intercept a SAML request and use the Dupe Key Injector tab to modify the assertion and then re-sign it using one of the following techniques:
- Re-sign with RSA key.
- Re-sign with public certificate (only enabled when a public base64 certificate has been imported).
mvn package
MIT License
This plugin is strongly based on SAML Raider. It actually uses many of the helper methods to process SAML tokens and XML documents from this project.
- Alvaro Muñoz (@pwntester)
- Oleksandr Mirosh (@OlekMirosh)
This plugin was developed as part of a Micro Focus Fortify research