WebSockets

Check List

Methodology

Black Box

Hijacking Private Data Leak

Log into sites that use file summarization or upload processes or artificial intelligence using websocket requests

Search for and identify WebSocket endpoints in Burp Suite

Upload a private file, start AI summary, send a message, etc

Keep the WebSocket connection open

Filter by WS, right-click the upgrade request, Copy, Copy as cURL like

GET /ai/wsio/?EIO=4&transport=websocket HTTP/2
Host: www.target.com
Cookie: session=abc123...

Paste into Burp Repeater, WebSocket tab

Create a new WebSocket connection using the same cookies (from your logged-in session)

Just wait, do not upload anything from this session

Trigger AI summary, chat message, or any real-time action

Go back to your Burp WebSocket, If you see messages like

{
  "contentItem": {
    "id": 987654,
    "content": "This is another user's private document...",
    "summary": "AI summary of secret file...",
    "isPublic": false
  }
}

WebSocket Hijacking, Private Data Leak CONFIRMED

White Box

Cheat Sheet

PreviousClickjacking NextWeb Messaging

Last updated 1 month ago