Reputation: 4095
Paw-App - encrypting a request field with AES
This is a Paw question. Is there a Paw encryption add-on that supports AES working in the commonly used modes and lengths?
I have a request that includes encrypted fields. These fields are AES encrypted. The key is 128 bits long. The encryption mode is CBC. The encryption is performed by the mobile app. The key is inside the mobile app.
At the moment, I capture the requests in Burp, Import them into Paw, and then I have the valid request.
I know the plaintext. I know the key. I know the algorithm. I know the Initialization Vector. There must be a better way.
I could not find anything on: https://paw.cloud/extensions/
Upvotes: 1
Views: 285
Answers (1)
Reputation: 396
There are two new DynamicValues that should allow you to do what you wish to do:
- AES Decrypt
- AES Encrypt
They are based on an npm port of the CryptoJS library and should expose most of the API for decryption/encryption in AES.
Here's a couple screenshot to show you what it looks like:
Since the DynamicValues are quite recent, there may be a few issues with them. Don't hesitate to report them.
Upvotes: 2
Related Questions
- How to encrypt a password field in django
- Crypto module and Encryption method not working
- Encrypt django model field using python 3.5
- Password Encryption in Flask
- How to encrypt payload in Python to make a payment - Adyen payment gateway
- Having a variable in the auth password stay encrypted
- Paw rest client : how to compute HMAC-SHA256 using absolute url as input
- curl --Digest Authentication with PAW-App
- PAW Rest Client: Generating HMAC-SHA256 Signature for AWS requests
- Basic HTTP Auth using Paw