hahwul / jwt-hack
π© jwt-hack is tool for hacking / security testing to JWT. Supported for En/decoding JWT, Generate payload for JWT attack and very fast cracking(dict/brutefoce)
β763Updated 5 months ago
Related projects β
Alternatives and complementary repositories for jwt-hack
- Tool to help exploit XXE vulnerabilitiesβ542Updated last year
- A fast tool to scan CRLF vulnerability written in Goβ1,336Updated 2 weeks ago
- Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hacβ¦β877Updated this week
- An automated SSRF finder. Just give the domain name and your server and chill! ;) Also has options to find XSS and open redirectsβ944Updated 2 years ago
- ScanT3r - Module based Bug Bounty Automation Tool ( use Lotus instead github.com/bugBlocker/lotus )β683Updated last year
- Fetches javascript file from a list of URLS or subdomains.β739Updated last year
- Quick SQLMap Tamper Suggesterβ1,347Updated 2 years ago
- HTTP Request Smuggling Detection Toolβ472Updated 11 months ago
- A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.β496Updated 2 years ago
- Heuristic Vulnerable Parameter Scannerβ572Updated 10 months ago
- A tool to check a bunch of URLs that contain reflecting params.β536Updated 3 months ago
- declutters url lists for crawling/pentestingβ1,203Updated 2 weeks ago
- Accept URLs on stdin, replace all query string values with a user-supplied valueβ767Updated last year
- Local file inclusion exploitation toolβ790Updated last year
- π― Server Side Template Injection Payloadsβ602Updated 4 months ago
- Automation for javascript recon in bug bounty.β900Updated last year
- An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters andβ¦β778Updated last year
- A fast DOM based XSS vulnerability scanner with simplicity.β771Updated 2 years ago
- A collection of special paths linked to common sensitive APIs, devops internals, frameworks conf, known misconfigurations, juicy APIs ..eβ¦β935Updated 4 months ago
- Go client to communicate with Chaos DB API.β641Updated this week
- XRCross is a Reconstruction, Scanner, and a tool for penetration / BugBounty testing. This tool was built to test (XSS|SSRF|CORS|SSTI|IDβ¦β329Updated last year
- A fuzzer for detecting open redirect vulnerabilitiesβ712Updated 4 months ago
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerabilityβ804Updated 2 years ago
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the acβ¦β1,680Updated 6 months ago
- This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attackβ671Updated last year
- DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on itβ445Updated 10 months ago
- A Burp extension helps identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violations,β¦β354Updated last month
- A fast tool to scan client-side prototype pollution vulnerability written in Rust. π¦β590Updated last year
- GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grepβ1,218Updated 2 months ago