September 2019 – Ryan Wendel

Ryan Wendel

My random musings on tech and whatever…

Enumerating Applications with Aquatone and Burp Suite

Application Enumeration Tips using Aquatone and Burp Suite

Ryan Wendel / September 27, 2019

I was recently introduced to a really cool domain flyover tool named Aquatone written by Michael Henriksen. In the past, I had used another really cool tool known as EyeWitness to perform similar tasks. In short, both of these tools screenshot web application resources (among other things)…

Continue Reading→

Using Burp's Cookie Jar for Java Web Tokens

Using Burp Suite’s Cookie Jar for JSON Web Tokens

Ryan Wendel / September 7, 2019

I was going over an application I wrote prepping for my upcoming class and realized the shortcoming’s of Burp’s default session handling mechanisms. Not to knock Burp, but working with a Single Page Application (SPA) that makes calls to several APIs using a JSON Web Token (JWT)…

Continue Reading→


Ryan Wendel currently operates as an AWS Solutions Architect for Trek10, an AWS Premier Consulting Partner. His primary interests and areas of technical expertise encompass AWS cloud architecture and web application security. Outside of his interests in technology, Ryan enjoys taking time off to snowboard, bike, lift weights, climb, hike, and enjoy the many delicious craft brews the Denver, CO area has to offer.