PortSwigger / jwt-editor
A Burp Suite extension for creating and editing JSON Web Tokens. This tool supports signing and verification of JWS, encryption and decryption of JWE and automation of several well-known attacks against applications that consume JWT.
☆21Updated 2 months ago
Related projects ⓘ
Alternatives and complementary repositories for jwt-editor
- ☆80Updated 6 months ago
- WEB API fuzzing☆24Updated last year
- Burp Suite's extension to scan and crawl Single Page Applications☆99Updated last year
- CVE-2023-34960 Chamilo PoC☆35Updated last year
- a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to …☆20Updated 2 months ago
- CVE-2024-27956 WordPress Automatic < 3.92.1 - Unauthenticated SQL Injection☆18Updated 6 months ago
- Time Based SQL Injection in Zabbix Server Audit Log --> RCE☆114Updated 6 months ago
- bounty collection☆28Updated 2 months ago
- ☆24Updated 5 months ago
- Sensitive Discoverer, a Burp extension to discovers sensitive information inside HTTP messages.☆42Updated 3 weeks ago
- A project for fuzzing HTTP/1.1 CL.0 Request Smuggling Attack Vectors☆85Updated 9 months ago
- CyberPanel 2.3.6 pre-auth RCE☆35Updated 3 weeks ago
- Nuclei template and information about the POC for CVE-2024-25600☆27Updated 9 months ago
- Burp Suite Extension - Trigger actions and reshape HTTP request/response and WebSocket traffic using configurable rules☆92Updated last week
- Central Repo for Burp extensions☆22Updated last month
- POC for CVE-2024-36401. This POC will attempt to establish a reverse shell from the vlun targets.☆33Updated 4 months ago
- Burp extension to check and exploit the IIS Tilde Enumeration/IIS 8.3 Short Filename Disclosure vulnerability☆55Updated last year
- Exploit for CVE-2024-20767 - Adobe ColdFusion☆33Updated 7 months ago
- Endpoints Explorer is a Python script that employs multiple bypass rules to discover sensitive endpoints☆83Updated 5 months ago
- All Nuclei Templates☆62Updated this week
- Burp Extension for a passive scanning JS files for endpoint links.☆52Updated this week
- Burp Suite extension that enhances Burp Active Scan by adding template engine specific SSTI payloads.☆21Updated 9 months ago
- CVE-2023-0669 GoAnywhere MFT suffers from a pre-authentication command injection vulnerability in the License Response Servlet due to des…☆100Updated 7 months ago
- CVE-2022-46169 Cacti remote_agent.php Unauthenticated Command Injection.☆49Updated last year
- Authentication Bypass in GoAnywhere MFT☆64Updated 9 months ago
- ☆30Updated last year
- A Burp Suite extension and standalone application for creating and editing JSON Web Tokens. This tool supports signing and verification o…☆35Updated 2 years ago
- ☆24Updated 2 years ago
- Introduction to CYS4-SensitiveDiscoverer, a Burp extension that discovers sensitive information inside HTTP messages.☆17Updated 3 weeks ago
- xRay is a fairly powerful scanner that will allow you to scan and scout targets☆21Updated last year