aurainfosec / jwt_key_confusionLinks
JWT key confusion attack, i.e. re-sigining RS256 to HS256
☆13Updated 3 years ago
Alternatives and similar repositories for jwt_key_confusion
Users that are interested in jwt_key_confusion are comparing it to the libraries listed below
Sorting:
- ☆64Updated 2 years ago
- A Burp Suite extension that helps track and manage multiple sessions simultaneously by color-coding HTTP requests based on custom pattern…☆28Updated last year
- Unicode characters that will translate a single character to multiple characters in domain names or TLD's☆49Updated last year
- Tool for helping in the exploitation of path traversal vulnerabilities in Java web applications☆33Updated 3 years ago
- A tool for inspecting and analyzing mobile application storage files.☆49Updated 7 months ago
- Security Advisories☆35Updated last month
- Make better use of the embedded browser that comes by default with Burp☆45Updated last year
- SALSA 💃⚡ - SALesforce Scanner for Aura (and beyond). Enumeration of vulnerabilities and misconfigurations against Salesforce endpoint.☆23Updated 10 months ago
- Automated JavaScript Debugging Tool using CDP - Automatically sets breakpoints for specified strings/patterns in JavaScript code☆94Updated 11 months ago
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆82Updated last year
- Formatify is a Burp Suite extension that instantly converts HTTP requests into multiple formats like cURL, Python, PowerShell, and more—s…☆28Updated 2 months ago
- Archived Please go to https://github.com/adamjsturge/xsshunter-go☆31Updated last year
- Burp suite extension to find sensitive information by checking incoming text OR binary websocket messages☆55Updated 11 months ago
- Adobe Experience Manager (AEM) hacking toolkit☆99Updated 2 months ago
- A tool for listing and extracting installed Android APKs and decrypted iOS IPAs (plus app storage) from rooted or jailbroken devices.☆36Updated 7 months ago
- A collection of TUBs (Totally Useless Bambdas) for Burp Suite, created by Tib3rius & friends.☆32Updated last year
- ☆66Updated 2 years ago
- Burp Extension to add additional functionality for pentesting websocket based applications☆100Updated 3 months ago
- ☆32Updated last year
- Simple PoC for demonstrating Race Conditions on Websockets☆55Updated 2 years ago
- This extension adds a search bar to the Repeater tab that can be used to highlight all repeater tabs where the request and/or response ma…☆80Updated 2 years ago
- For unpacking base64:ed "Save items"-content from Burp (From search + proxy history)☆54Updated 9 months ago
- Payload generator to exfiltrate user cookies through the PHP info page bypassing the HttpOnly flag during XSS exploitation.☆20Updated last year
- ☆58Updated last year
- ☆28Updated last year
- Cloning apk for bypassing code tampering detection, Google Safety Net and scanning vulnerable plugins�☆84Updated 2 years ago
- Information Security Information From Web☆28Updated 4 months ago
- ai-based domain name generation☆99Updated 10 months ago
- Deploy a SOCKS5 proxy in DigitalOcean and autoconfigure the Burp proxy settings to route all traffic through the droplet☆57Updated last year
- Encode and Fuzz Custom Protobuf Messages in Burp Suite☆35Updated 9 months ago