DontPanicO/jwtXploiter external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

DontPanicO/jwtXploiter

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/DontPanicO/jwtXploiter)

Close

DontPanicO / jwtXploiterView on GitHubMore

• External links
• Readme badge

A tool to test security of json web token

☆290Mar 12, 2021Updated 5 years ago

Alternatives and similar repositories for jwtXploiter

Users that are interested in jwtXploiter are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• samirettali / dumpcn

  View on GitHub
  Get all the CNs from a list of domains
  ☆45Aug 17, 2021Updated 4 years ago
• Abss0x7tbh / massNS

  View on GitHub
  A tool that turns the authoritative nameservers of DNS providers to resolvers and resolves the target domain list. Please think of this a…
  ☆25Sep 19, 2019Updated 6 years ago
• mazen160 / jwt-pwn

  View on GitHub
  Security Testing Scripts for JWT
  ☆333Mar 13, 2026Updated 3 months ago
• codingo / microsubs

  View on GitHub
  A collection of code for interacting with API sources directly to improve your understanding of those services.
  ☆66Dec 11, 2020Updated 5 years ago
• raverrr / plution

  View on GitHub
  Prototype pollution scanner using headless chrome
  ☆216Jul 27, 2022Updated 3 years ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• mhaskar / Bughound

  View on GitHub
  Static code analysis tool based on Elasticsearch
  ☆130Jan 23, 2021Updated 5 years ago
• In3tinct / Taken

  View on GitHub
  Takeover subdomains using AWS dangling elastic ips and have a working POC for Subdomain Takeover.
  ☆93Jul 9, 2025Updated 11 months ago
• Damian89 / extended-ssrf-search

  View on GitHub
  Smart ssrf scanner using different methods like parameter brute forcing in post and get...
  ☆277Feb 11, 2021Updated 5 years ago
• ticarpi / jwt_tool

  View on GitHub
  A toolkit for testing, tweaking and cracking JSON Web Tokens
  ☆6,664May 1, 2025Updated last year
• visma-prodsec / confused

  View on GitHub
  Tool to check for dependency confusion vulnerabilities in multiple package management systems
  ☆786Aug 19, 2024Updated last year
• j3ssie / goverview

  View on GitHub
  goverview - Get an overview of the list of URLs
  ☆143Dec 5, 2025Updated 6 months ago
• Healdb / Elevate

  View on GitHub
  Horizontal Domain Discovery
  ☆76May 22, 2023Updated 3 years ago
• MichaelStott / CRLF-Injection-Scanner

  View on GitHub
  Command line tool for testing CRLF injection on a list of domains.
  ☆163Apr 14, 2024Updated 2 years ago
• mhmdiaa / second-order

  View on GitHub
  Second-order subdomain takeover scanner
  ☆405Mar 29, 2026Updated 2 months ago
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• hahwul / jwt-hack

  View on GitHub
  JSON Web Token Hack Toolkit
  ☆998Updated this week
• redcode-labs / UnChain

  View on GitHub
  A tool to find redirection chains in multiple URLs
  ☆79Jan 1, 2025Updated last year
• mlcsec / headi

  View on GitHub
  Customisable and automated HTTP header injection
  ☆296Jun 27, 2024Updated last year
• ethicalhackingplayground / ssrf-king

  View on GitHub
  SSRF plugin for burp Automates SSRF Detection in all of the Request
  ☆626Jan 20, 2021Updated 5 years ago
• devanshbatham / FavFreak

  View on GitHub
  Making Favicon.ico based Recon Great again !
  ☆1,291Aug 29, 2023Updated 2 years ago
• vp777 / metahttp

  View on GitHub
  A bash script that automates the scanning of a target network for HTTP resources through XXE
  ☆38Dec 2, 2020Updated 5 years ago
• glebarez / cero

  View on GitHub
  Scrape domain names from SSL certificates of arbitrary hosts
  ☆691Mar 31, 2024Updated 2 years ago
• Sh1Yo / x8

  View on GitHub
  Hidden parameters discovery suite
  ☆2,066Sep 8, 2024Updated last year
• anshumanpattnaik / http-request-smuggling

  View on GitHub
  HTTP Request Smuggling Detection Tool
  ☆539Dec 21, 2023Updated 2 years ago
• Serverless GPU API endpoints on Runpod - Get Bonus Credits • Ad
  Skip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
• robre / jsmon

  View on GitHub
  a javascript change monitoring tool for bugbounties
  ☆730Jul 31, 2024Updated last year
• laluka / bypass-url-parser

  View on GitHub
  bypass-url-parser
  ☆1,134Updated this week
• ameenmaali / qsfuzz

  View on GitHub
  qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.
  ☆300Feb 12, 2023Updated 3 years ago
• incogbyte / jsearch

  View on GitHub
  ☆32Apr 6, 2021Updated 5 years ago
• Shivangx01b / CorsMe

  View on GitHub
  Cross Origin Resource Sharing MisConfiguration Scanner
  ☆172Nov 17, 2021Updated 4 years ago
• kleiton0x00 / ppmap

  View on GitHub
  A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.
  ☆519Jun 22, 2022Updated 3 years ago
• dwisiswant0 / gf-secrets

  View on GitHub
  Secret and/or credential patterns used for gf.
  ☆245Feb 10, 2023Updated 3 years ago
• InitRoot / BurpSQLTruncSanner

  View on GitHub
  Messy BurpSuite plugin for SQL Truncation vulnerabilities.
  ☆65Apr 17, 2020Updated 6 years ago
• jaeles-project / jaeles

  View on GitHub
  The Swiss Army knife for automated Web Application Testing
  ☆2,350May 8, 2024Updated 2 years ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• Static-Flow / BurpSuiteAutoRepeaterNaming

  View on GitHub
  This extension replaces the default repeater tab name with the URL path of the repeater request.
  ☆25Sep 3, 2021Updated 4 years ago
• 003random / getJS

  View on GitHub
  A tool to fastly get all javascript sources/files
  ☆883Jul 4, 2025Updated 11 months ago
• RenwaX23 / XSSTRON

  View on GitHub
  Electron JS Browser To Find XSS Vulnerabilities Automatically
  ☆748Mar 30, 2021Updated 5 years ago
• KathanP19 / JSFScan.sh

  View on GitHub
  Automation for javascript recon in bug bounty.
  ☆1,093Sep 9, 2023Updated 2 years ago
• abdilahrf / shania

  View on GitHub
  Scan secrets from Continuous Integration Build Logs
  ☆53Oct 14, 2019Updated 6 years ago
• lobuhi / byp4xx

  View on GitHub
  40X/HTTP bypasser in Go. Features: Verb tampering, headers, #bugbountytips, User-Agents, extensions, default credentials...
  ☆1,868Jul 3, 2023Updated 2 years ago
• adarshshetty18 / fcm_server_key

  View on GitHub
  Tool to extract & validate google fcm server keys from apks
  ☆31Jan 20, 2021Updated 5 years ago