fix(burp): fix JSON request mistakenly detected as binary

lanshuizhiyue · lanshuizhiyue · commit 2c9a5ed1eb68 · 2026-01-28T10:49:19.000+08:00
- Update BinaryContentDetector to return text type immediately when Content-Type
  indicates text content (text/*, application/json, application/xml, etc.)
- Skip body content detection for known text types to avoid false positives
- Update version to 1.8.16 in both Montoya and Legacy API plugins
diff --git a/src/burpEx/legacy-api/pom.xml b/src/burpEx/legacy-api/pom.xml
@@ -6,7 +6,7 @@
 
     <groupId>com.sqlmapwebui</groupId>
     <artifactId>sqlmap-webui-burp-legacy</artifactId>
-    <version>1.8.14</version>
+    <version>1.8.16</version>
     <packaging>jar</packaging>
 
     <name>SQLMap WebUI Burp Extension (Legacy API)</name>
diff --git a/src/burpEx/legacy-api/src/main/java/com/sqlmapwebui/burp/BinaryContentDetector.java b/src/burpEx/legacy-api/src/main/java/com/sqlmapwebui/burp/BinaryContentDetector.java
@@ -134,7 +134,12 @@ public static DetectionResult detect(IHttpRequestResponse requestResponse, IExte
         String contentType = getContentType(requestInfo);
         if (contentType != null && !contentType.isEmpty()) {
             DetectionResult contentTypeResult = checkContentType(contentType);
-            if (contentTypeResult.isBinary()) {
+            // 如果是已知文本类型，直接返回文本结果，不再进行后续检测
+            if (!contentTypeResult.isBinary()) {
+                return contentTypeResult;
+            }
+            // 如果是已知二进制类型，直接返回二进制结果
+            if (contentTypeResult.getReason().startsWith("已知二进制类型")) {
                 return contentTypeResult;
             }
         }
@@ -151,7 +156,7 @@ public static DetectionResult detect(IHttpRequestResponse requestResponse, IExte
             }
         }
         
-        // 3. 检查请求体是否包含二进制数据
+        // 3. 检查请求体是否包含二进制数据（仅针对未知类型）
         int bodyOffset = requestInfo.getBodyOffset();
         if (bodyOffset < request.length) {
             byte[] body = Arrays.copyOfRange(request, bodyOffset, request.length);
diff --git a/src/burpEx/legacy-api/src/main/java/com/sqlmapwebui/burp/BurpExtender.java b/src/burpEx/legacy-api/src/main/java/com/sqlmapwebui/burp/BurpExtender.java
@@ -43,7 +43,7 @@ public class BurpExtender implements IBurpExtender, IContextMenuFactory, ITab {
     private SqlmapUITab uiTab;
     
     private static final String EXTENSION_NAME = "SQLMap WebUI";
-    private static final String EXTENSION_VERSION = "1.0.0";
+    private static final String EXTENSION_VERSION = "1.8.16";
     
     /**
      * 过滤结果类 - 存储过滤后的纯文本请求和过滤统计
diff --git a/src/burpEx/legacy-api/src/main/java/com/sqlmapwebui/burp/dialogs/AboutDialog.java b/src/burpEx/legacy-api/src/main/java/com/sqlmapwebui/burp/dialogs/AboutDialog.java
@@ -11,7 +11,7 @@
  */
 public class AboutDialog extends JDialog {
     
-    private static final String VERSION = "1.7.9";
+    private static final String VERSION = "1.8.16";
     
     /**
      * 自定义Logo组件 - 绘制盾牌+注入针头图标
diff --git a/src/burpEx/montoya-api/pom.xml b/src/burpEx/montoya-api/pom.xml
@@ -6,7 +6,7 @@
 
     <groupId>com.sqlmapwebui</groupId>
     <artifactId>sqlmap-webui-burp-montoya</artifactId>
-    <version>1.8.14</version>
+    <version>1.8.16</version>
     <packaging>jar</packaging>
 
     <name>SQLMap WebUI Burp Extension (Montoya API)</name>
diff --git a/src/burpEx/montoya-api/src/main/java/com/sqlmapwebui/burp/BinaryContentDetector.java b/src/burpEx/montoya-api/src/main/java/com/sqlmapwebui/burp/BinaryContentDetector.java
@@ -125,7 +125,12 @@ public static DetectionResult detect(HttpRequest request) {
         String contentType = getContentType(request);
         if (contentType != null && !contentType.isEmpty()) {
             DetectionResult contentTypeResult = checkContentType(contentType);
-            if (contentTypeResult.isBinary()) {
+            // 如果是已知文本类型，直接返回文本结果，不再进行后续检测
+            if (!contentTypeResult.isBinary()) {
+                return contentTypeResult;
+            }
+            // 如果是已知二进制类型，直接返回二进制结果
+            if (contentTypeResult.getReason().startsWith("已知二进制类型")) {
                 return contentTypeResult;
             }
         }
@@ -139,7 +144,7 @@ public static DetectionResult detect(HttpRequest request) {
             }
         }
         
-        // 3. 检查请求体是否包含二进制数据
+        // 3. 检查请求体是否包含二进制数据（仅针对未知类型）
         byte[] body = request.body().getBytes();
         if (body != null && body.length > 0) {
             DetectionResult bodyResult = checkBodyForBinary(body);
diff --git a/src/burpEx/montoya-api/src/main/java/com/sqlmapwebui/burp/SqlmapWebUIExtension.java b/src/burpEx/montoya-api/src/main/java/com/sqlmapwebui/burp/SqlmapWebUIExtension.java
@@ -19,7 +19,7 @@
 public class SqlmapWebUIExtension implements BurpExtension {
     
     private static final String EXTENSION_NAME = "SQLMap WebUI";
-    private static final String EXTENSION_VERSION = "1.0.0";
+    private static final String EXTENSION_VERSION = "1.8.16";
     
     private MontoyaApi api;
     private ConfigManager configManager;
diff --git a/src/burpEx/montoya-api/src/main/java/com/sqlmapwebui/burp/dialogs/AboutDialog.java b/src/burpEx/montoya-api/src/main/java/com/sqlmapwebui/burp/dialogs/AboutDialog.java
@@ -11,7 +11,7 @@
  */
 public class AboutDialog extends JDialog {
     
-    private static final String VERSION = "1.7.9";
+    private static final String VERSION = "1.8.16";
     
     /**
      * 自定义Logo组件 - 绘制盾牌+注入针头图标

Original file line number	Diff line number	Diff line change
`@@ -134,7 +134,12 @@ public static DetectionResult detect(IHttpRequestResponse requestResponse, IExte`
`134`	`134`	`String contentType = getContentType(requestInfo);`
`135`	`135`	`if (contentType != null && !contentType.isEmpty()) {`
`136`	`136`	`DetectionResult contentTypeResult = checkContentType(contentType);`
`137`		`- if (contentTypeResult.isBinary()) {`
	`137`	`+ // 如果是已知文本类型，直接返回文本结果，不再进行后续检测`
	`138`	`+ if (!contentTypeResult.isBinary()) {`
	`139`	`+ return contentTypeResult;`
	`140`	`+ }`
	`141`	`+ // 如果是已知二进制类型，直接返回二进制结果`
	`142`	`+ if (contentTypeResult.getReason().startsWith("已知二进制类型")) {`
`138`	`143`	`return contentTypeResult;`
`139`	`144`	`}`
`140`	`145`	`}`
`@@ -151,7 +156,7 @@ public static DetectionResult detect(IHttpRequestResponse requestResponse, IExte`
`151`	`156`	`}`
`152`	`157`	`}`
`153`	`158`
`154`		`- // 3. 检查请求体是否包含二进制数据`
	`159`	`+ // 3. 检查请求体是否包含二进制数据（仅针对未知类型）`
`155`	`160`	`int bodyOffset = requestInfo.getBodyOffset();`
`156`	`161`	`if (bodyOffset < request.length) {`
`157`	`162`	`byte[] body = Arrays.copyOfRange(request, bodyOffset, request.length);`
Original file line number	Diff line number	Diff line change
`@@ -125,7 +125,12 @@ public static DetectionResult detect(HttpRequest request) {`
`125`	`125`	`String contentType = getContentType(request);`
`126`	`126`	`if (contentType != null && !contentType.isEmpty()) {`
`127`	`127`	`DetectionResult contentTypeResult = checkContentType(contentType);`
`128`		`- if (contentTypeResult.isBinary()) {`
	`128`	`+ // 如果是已知文本类型，直接返回文本结果，不再进行后续检测`
	`129`	`+ if (!contentTypeResult.isBinary()) {`
	`130`	`+ return contentTypeResult;`
	`131`	`+ }`
	`132`	`+ // 如果是已知二进制类型，直接返回二进制结果`
	`133`	`+ if (contentTypeResult.getReason().startsWith("已知二进制类型")) {`
`129`	`134`	`return contentTypeResult;`
`130`	`135`	`}`
`131`	`136`	`}`
`@@ -139,7 +144,7 @@ public static DetectionResult detect(HttpRequest request) {`
`139`	`144`	`}`
`140`	`145`	`}`
`141`	`146`
`142`		`- // 3. 检查请求体是否包含二进制数据`
	`147`	`+ // 3. 检查请求体是否包含二进制数据（仅针对未知类型）`
`143`	`148`	`byte[] body = request.body().getBytes();`
`144`	`149`	`if (body != null && body.length > 0) {`
`145`	`150`	`DetectionResult bodyResult = checkBodyForBinary(body);`