With new releases now happening daily, we are very excited to announce a powerful new feature, which will take your hacking (and debugging for that matter) skills to the next level - variables. With the help of the request variables you can now use a common storage location that you can reference everywhere to build fully dynamic and consistent HTTP requests.
As you can see from the screenshot above, both
var2 url query parameters have values that come directly from two variables:
lName respectively. Both of these variables are conveniently defined inside the Variables tab and are subject to the same autocompletion and dynamic features as everything else.
Variables can be used everywhere including inside all dynamic fields such Encode, Transform and Hash. In fact, you can include variables with as much nesting as required to perform the task at hand. For example, the following configuration uses a variable to create a hash of a base64 string.
These kinds of setup are perfect when dealing with very dynamic requests that require several layers of encapsulation in order to get the data just right without any coping and pasting and without making your own custom tools.
This feature is a stepping stone towards our goal to make one of the best web application security tools available on the market today and we hope you enjoy it as much as we do. We are planning to make even more exciting announcements really soon so stay tuned by subscribing to our twitter feed.