aress31 / jwtcat
A CPU-based JSON Web Token (JWT) cracker and - to some extent - scanner.
☆293Updated 6 months ago
Related projects ⓘ
Alternatives and complementary repositories for jwtcat
- PNG IDAT chunks XSS payload generator☆170Updated 2 years ago
- Security Testing Scripts for JWT☆308Updated 2 years ago
- The Serverless Blind XSS App☆329Updated 7 months ago
- Issues with WebSocket reverse proxying allowing to smuggle HTTP requests☆337Updated 3 months ago
- A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)☆528Updated 9 months ago
- Payloads for CRLF Injection☆217Updated last month
- You can read the writeup on this script here☆267Updated 4 years ago
- HTTP file upload scanner for Burp Proxy☆397Updated last year
- An hourly updated list of subdomains gathered from certificate transparency logs☆341Updated 3 years ago
- Python based scanner to find potential SSRF parameters☆283Updated 8 months ago
- NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.☆356Updated 3 years ago
- SSRF testing tool☆241Updated last year
- Automatic finder for subdomains vulnerable to takeover. Written in Go, based on @haccer's subjack.☆145Updated 4 years ago
- Contents for Node.Js Security Course☆330Updated 4 years ago
- Repository for hosting my research papers☆504Updated 7 months ago
- HackerOne "in scope" domains☆401Updated this week
- Tool for catching and logging different types of requests.☆219Updated 4 years ago
- File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.☆266Updated 3 years ago
- simple script to extract all web resources by means of .SVN folder exposed over network.☆451Updated 9 months ago
- DNS rebinding toolkit☆250Updated last year
- Automatic tool for DNS rebinding-based SSRF attacks☆294Updated 4 years ago
- List DTDs and generate XXE payloads using those local DTDs.☆614Updated 9 months ago
- Local file inclusion exploitation tool☆794Updated last year
- Trying to make automated recon for bug bounties☆251Updated 3 years ago
- Reconnaissance tool which scans javascript files for subdomains and then iterates over all javascript files hosted on subsequent subdomai…☆221Updated 4 years ago
- Open Redirect Payloads☆582Updated last month
- Tool to help exploit XXE vulnerabilities☆543Updated last year
- Second-order subdomain takeover scanner☆377Updated last year
- Wordlists that have been compiled using Commonspeak2. This repo is updated every time new wordlists are generated.☆524Updated 6 years ago