RawHex'ler is a Burp Suite extension designed to enhance the handling of HEX data within HTTP requests and responses. It introduces a new, integrated tab that allows for seamless manipulation of raw HEX requests/responses in a hexdump format, offering greater flexibility compared to the standard Hex editor. RawHex'ler does not aim to replace the existing Hex editor tab but instead enhances Burp Suite by adding a missing feature that facilitates HEX byte(s) insertion via copy/paste.
- HEX Handling: Paste or modify raw HEX string(s) in a continuous line
- Integrated Tab: Adds a new tab in each HTTP Request/Response view (alongside Pretty, Raw, Hex, etc.) called RawHex'ler.
- Context Menu Access: Right-click within the RawHex'ler tab to access a variety of display modes and settings, allowing you to tailor the HEX data presentation to your preferences.
- Copy and paste EICAR or other antivirus-signatured content as HEX directly into a request/response without needing the file on disk ;)
- Search and highlight HEX strings with standard Burp Suite search field at the bottom of the RawHex'ler tab
NOTE: Changes to settings in an existing RawHex'ler tab will apply globally to all newly created RawHex'ler tabs.
- Prefix Offset: Choose to add or remove a HEX offset representation at the start of each line. This helps in tracking byte positions within the data.
- Space Delimiters: Option to include or exclude space delimiters in the hex content for improved readability.
- UTF-8 Postfix Notation: Enable or disable the display of UTF-8 encoded characters alongside the HEX data, aiding in the interpretation of human-readable text within the binary data.
Attention: Carriage-return (
\r) and newline (\n) characters are displayed as spaces in the UTF-8 postfix. This postfix data is read-only, meaning any modifications to it will not alter the actual content.
The following demo shows RawHex'ler in action by replacing a query string via copy&paste of HEX representation with the EICAR string.
- Sebastian Vetter: https://github.com/svetterIO