h-a-c / jwt-labLinks
Lab for learning JWT.
☆35Updated 3 years ago
Alternatives and similar repositories for jwt-lab
Users that are interested in jwt-lab are comparing it to the libraries listed below
Sorting:
- Pass list of urls with FUZZ in and it will check if it has found a potential SSRF.☆112Updated 3 years ago
- WordPress Plugin Update Confusion☆67Updated 4 years ago
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…☆132Updated 4 years ago
- Match and Replace script used to automatically generate JSON option file to BurpSuite☆215Updated 6 years ago
- Webapp to search tips on Twitter through #bugbountytips☆72Updated 3 years ago
- This Repo contains wordlist for subdomain enumeration , php file path, html file path, and js file path☆107Updated 5 years ago
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆164Updated 4 years ago
- Urls de-duplication tool for better recon.☆145Updated 8 months ago
- SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibil…☆156Updated 5 years ago
- All known and unknown public POC's for wordpress themes and plugins☆78Updated 4 years ago
- 📚 An ultimate collection wordlists of the best-known CMS☆93Updated last year
- Misc bounty and vulndisc things☆85Updated 5 years ago
- Command line tool for testing CRLF injection on a list of domains.☆166Updated last year
- ☆42Updated 2 years ago
- CRLF and open redirect fuzzer☆112Updated 4 years ago
- A combined wordlists for files and directory discovery☆127Updated 4 years ago
- A tool to perform permutations, mutations and alteration of subdomains in golang.☆156Updated 2 years ago
- X-Forwarded-For [403 forbidden] enumeration☆99Updated last year
- Generates target specific word lists for Fuzzing with fuff☆112Updated 5 years ago
- Tool to find the real IP behind CDNs/WAFs like cloudflare using passive recon by retrieving the favicon hash. For the same hash value, al…☆185Updated 5 years ago
- Adds a customizable "Send to..."-context-menu to your BurpSuite.☆163Updated 3 years ago
- Hidden parameters discovery suite☆225Updated 3 years ago
- Dotmil subdomain discovery tool that scrapes domains from official DoD website directories and certificate transparency logs☆95Updated 5 years ago
- A tool for append URLs, skipping duplicates/paths & combine parameters.☆128Updated 3 years ago
- A simple Swagger-ui scanner that can detect old versions vulnerable to various XSS attacks☆60Updated 6 years ago
- Detects request smuggling via HTTP/2 downgrades.☆94Updated 3 years ago
- golang tool to scan domains or single domains with know security issues against xmlrpc☆62Updated 2 years ago
- ☆96Updated 5 years ago
- SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files☆35Updated 5 years ago
- Just some public notes that can be useful and i want let the world knows.☆88Updated 5 years ago