Burp Extension for AWS SigV4 Signing

Create a profile in the extension's tab to specify which credentials should be used when signing the request.

The extension will check each request passing through Burp. If the request has both the "X-Amz-Date" and "Authorization" header, the request will be re-signed with the specified profile's credentials, and the headers updated.

Additional information

For detailed usage instructions check out the README available on the extension's GitHub repository.

More information about Sigv4 can be found here:

• https://docs.aws.amazon.com/AmazonS3/latest/API/sig-v4-authenticating-requests.html
• https://docs.aws.amazon.com/general/latest/gr/signature-version-4.html