Burp Extension for automatically finding and decoding insecure BigIP cookies
- Passively scan sites for insecure BigIP-style cookies
- Automatically decode the cookie
- Only searches in the response, so clear cookies before use if you've visited the site before.
- Download bigip.jar and load it into Burp Suite using the Extender.
- Visit a website with an insecure BigIP cookie.
- See the issue in the Issues pane with the decoded value.