aress31 / jwtcat
A CPU-based JSON Web Token (JWT) cracker and - to some extent - scanner.
☆302Updated 10 months ago
Alternatives and similar repositories for jwtcat:
Users that are interested in jwtcat are comparing it to the libraries listed below
- PNG IDAT chunks XSS payload generator☆187Updated 2 years ago
- NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.☆374Updated 3 years ago
- Python tool to find potential SSRF parameters☆315Updated last month
- Security Testing Scripts for JWT☆312Updated 2 years ago
- HTTP Request Smuggling Detection Tool☆491Updated last year
- HTTP Request Smuggling over HTTP/2 Cleartext (h2c)☆708Updated 2 years ago
- HTTP file upload scanner for Burp Proxy☆403Updated last year
- Subdomain Takeover Scanner | Subdomain Takeover Tool | by 0x94☆360Updated last year
- A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)☆592Updated last year
- Issues with WebSocket reverse proxying allowing to smuggle HTTP requests☆353Updated 7 months ago
- Crack the shared secret of a HS256-signed JWT☆240Updated last year
- Open Redirect Payloads☆606Updated 5 months ago
- BFAC (Backup File Artifacts Checker): An automated tool that checks for backup artifacts that may disclose the web-application's source c…☆547Updated 2 years ago
- Automated blind-xss search for Burp Suite☆283Updated 5 years ago
- ☆264Updated 6 years ago
- Client Side Prototype Pollution Scanner☆518Updated 2 years ago
- File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.☆271Updated 4 years ago
- Payloads for CRLF Injection☆224Updated 5 months ago
- Common Web Managers Fuzz Wordlists☆174Updated 3 weeks ago
- Scan Victim Backup Directories & Backup Files☆178Updated last year
- Tool to help exploit XXE vulnerabilities☆555Updated 2 years ago
- Wordlists that have been compiled using Commonspeak2. This repo is updated every time new wordlists are generated.☆527Updated 6 years ago
- Turbo Intruder Scripts☆222Updated 4 years ago
- SSRF testing tool☆244Updated 2 years ago
- HTTP file upload scanner for Burp Proxy☆490Updated last year
- Fetches javascript file from a list of URLS or subdomains.☆759Updated last year
- A blind XSS detection and XSS data capture framework☆169Updated last month
- You can read the writeup on this script here☆271Updated 4 years ago
- 🚀 A DNS automated scanner and tool 🖱️ (Zone Transfer, DNS Zone Takeover, Subdomain Takeover).☆294Updated 5 months ago
- Web App bug hunting☆561Updated 3 weeks ago