netscylla / JWT_HackingLinks
Collection of scripts that aid in penetration testing of JSON Web Tokens
☆59Updated 6 years ago
Alternatives and similar repositories for JWT_Hacking
Users that are interested in JWT_Hacking are comparing it to the libraries listed below
Sorting:
- Simple Server Side Request Forgery services enumeration tool.☆55Updated 7 years ago
- This burpsuite extender provides a solution on testing Enterprise applications that involve security Authorization tokens into every HTTP…☆47Updated 6 years ago
- XXRF Shots - Useful for testing SSRF vulnerability☆74Updated 2 years ago
- BURP extension providing a set of values for the HTTP request "Host" header for the "BURP Intruder" in order to abuse virtual host resolu…☆60Updated 8 years ago
- A Burp Suite content discovery plugin that add the smart into the Buster!☆32Updated 7 years ago
- subdomain bruteforce list☆102Updated last year
- A tool for fetching archived URLs (to be rewritten in Go).☆41Updated 7 years ago
- ☆32Updated 6 years ago
- A sub-domain enumeration tool☆20Updated 5 years ago
- A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.☆26Updated 6 years ago
- Hacked together script for feeding urls into Burp's Sitemap☆93Updated 5 months ago
- A Burp extension to show the Collaborator client in a tab☆36Updated 2 years ago
- Fuzzing for LFI using Burpsuite☆66Updated 9 years ago
- A proof of concept to dump Django website's source code affected by NGINX's off-by-slash alias directive misconfiguration.☆24Updated 2 years ago
- This tool will scan all the URL's in the file and will provide Content-Length, Status-Code, Server and more.☆36Updated 3 years ago
- A tool written in python for scraping firebase data☆43Updated 5 years ago
- Burp Suite extension to easily export sub domains☆44Updated 5 years ago
- gathers the XSS cheatsheet payloads and creates a usable wordlist☆73Updated 4 years ago
- Kubernetes Scanner☆40Updated 3 years ago
- Burp extension that performs a passive scan to identify cloud buckets and then test them for publicly accessible vulnerabilities☆46Updated 2 years ago
- RAS(RAndom Subdomain) Fuzzer☆42Updated 5 years ago
- VyAPI - A cloud based vulnerable hybrid Android App☆86Updated 5 years ago
- A Burp extension to detect and exploit versions of Telerik Web UI vulnerable to CVE-2017-9248.☆99Updated 7 years ago
- A bash script that fetches and maintains thousands of DNS resolvers☆65Updated 5 years ago
- Broken Link Hijacking Burp Extension☆57Updated 6 years ago
- My notebook for OSCP Lab☆26Updated 8 years ago
- Tool that checks for path traversal traces in a given web application url, plus it is capable of multi-threading, set timeout and 5-layer…☆46Updated 7 years ago
- ZIP File Raider - Burp Extension for ZIP File Payload Testing☆72Updated 5 years ago
- This repository contains all the material from the talk "Practical recon techniques for bug hunters & pentesters" given at Bugcrowd Level…☆61Updated 6 years ago
- A tool to evaluate Content Security Policies.☆71Updated 5 years ago