3v4Si0N / RS256-2-HS256Links
JWT Attack to change the algorithm RS256 to HS256
☆34Updated 2 years ago
Alternatives and similar repositories for RS256-2-HS256
Users that are interested in RS256-2-HS256 are comparing it to the libraries listed below
Sorting:
- The tool exfiltrates data from Couchbase database by exploiting N1QL injection vulnerabilities.☆77Updated 5 years ago
- SSRF to TCP Port Scanning, Banner and Private IP Disclosure by abusing the FTP protocol/clients☆70Updated 4 years ago
- ☆103Updated 5 years ago
- BURP extension to record every HTTP request send via BURP and create an audit trail log of an assessment.☆66Updated 7 months ago
- XXE Injection Payloads☆28Updated 6 years ago
- a parser + crawler for .DS_Store files exposed publically☆55Updated 2 years ago
- HTML5 Training material for Attack and Secure training sessions.☆43Updated 2 years ago
- Plattform to develop and experiment with existing java web attacks.☆31Updated 7 years ago
- Collection of scripts that aid in penetration testing of JSON Web Tokens☆59Updated 6 years ago
- Collection of different exploitation scenarios of JWT.☆21Updated 4 years ago
- Simple python script to check against hypothetical JWT vulnerability.☆51Updated 5 years ago
- TheCl0n3r will allow you to download and manage your git repositories.☆51Updated 5 years ago
- Writeup of CVE-2020-15906☆49Updated 5 years ago
- A Reflected / Stored / DOM XSS Scanner based on Headless Chrome Node API via Puppeteer☆40Updated 2 years ago
- BurpSuite's payload-generation extension aiming at applying fuzzed test-cases depending on the type of payload (integer, string, path; JS…☆40Updated 4 years ago
- CVE-2020-9484 Mass Scanner, Scan a list of urls for Apache Tomcat deserialization (CVE-2020-9484) which could lead to RCE☆31Updated 5 years ago
- VyAPI - A cloud based vulnerable hybrid Android App☆86Updated 5 years ago
- Deploy a Private Burpsuite Collaborator using boto3 Python Library☆58Updated 5 years ago
- HTTP Desync Attack☆28Updated 5 years ago
- A Burp Suite extension for headless, unattended scanning.☆36Updated 5 years ago
- A python module that accepts an HTTP request file and returns a dictionary of headers and post data☆44Updated 6 years ago
- Unauthenticated RCE at Woody Ad Snippets / CVE-2019-15858 (PoC)☆32Updated 2 years ago
- A burp extension to generate sqlmap PoC from target HTTP request.☆27Updated 8 years ago
- Burp Extension for AWS Signing☆90Updated 11 months ago
- Image Tragick Exploit Tool Using Burp Collaborator☆35Updated last year
- Auto Recon Bash Script☆31Updated 11 months ago
- This burpsuite extender provides a solution on testing Enterprise applications that involve security Authorization tokens into every HTTP…☆47Updated 6 years ago
- This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…☆36Updated 2 years ago
- Hacking Artifactory with server side template injection☆51Updated 5 years ago
- Some of my public exploits☆51Updated 5 years ago