Alternatives and similar repositories for JWT_Hacking

Users that are interested in JWT_Hacking are comparing it to the libraries listed below

• dreadlocked / SSRFmap
  Simple Server Side Request Forgery services enumeration tool.
  ☆55Updated 7 years ago
• twelvesec / BearerAuthToken
  This burpsuite extender provides a solution on testing Enterprise applications that involve security Authorization tokens into every HTTP…
  ☆47Updated 6 years ago
• samhaxr / XXRF-Shots
  XXRF Shots - Useful for testing SSRF vulnerability
  ☆74Updated 2 years ago
• righettod / virtualhost-payload-generator
  BURP extension providing a set of values for the HTTP request "Host" header for the "BURP Intruder" in order to abuse virtual host resolu…
  ☆60Updated 8 years ago
• PortSwigger / burp-smart-buster
  A Burp Suite content discovery plugin that add the smart into the Buster!
  ☆32Updated 7 years ago
• cujanovic / subdomain-bruteforce-list
  subdomain bruteforce list
  ☆102Updated last year
• EdOverflow / curate
  A tool for fetching archived URLs (to be rewritten in Go).
  ☆41Updated 7 years ago
• ettic-team / EndpointFinder-Burp
  ☆32Updated 6 years ago
• DFC302 / subseeker
  A sub-domain enumeration tool
  ☆20Updated 5 years ago
• eur0pa / goGetBucket
  A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.
  ☆26Updated 6 years ago
• ZephrFish / BurpFeed
  Hacked together script for feeding urls into Burp's Sitemap
  ☆93Updated 5 months ago
• PortSwigger / taborator
  A Burp extension to show the Collaborator client in a tab
  ☆36Updated 2 years ago
• Team-Firebugs / Burp-LFI-tests
  Fuzzing for LFI using Burpsuite
  ☆66Updated 9 years ago
• adamyordan / offbyslash-django-dumper
  A proof of concept to dump Django website's source code affected by NGINX's off-by-slash alias directive misconfiguration.
  ☆24Updated 2 years ago
• TROUBLE-1 / codeza
  This tool will scan all the URL's in the file and will provide Content-Length, Status-Code, Server and more.
  ☆36Updated 3 years ago
• viperbluff / Firebase-Extractor
  A tool written in python for scraping firebase data
  ☆43Updated 5 years ago
• Regala / burp-subdomains
  Burp Suite extension to easily export sub domains
  ☆44Updated 5 years ago
• crawl3r / PortswiggerXSS
  gathers the XSS cheatsheet payloads and creates a usable wordlist
  ☆73Updated 4 years ago
• random-robbie / kube-scan
  Kubernetes Scanner
  ☆40Updated 3 years ago
• codewatchorg / Burp-AnonymousCloud
  Burp extension that performs a passive scan to identify cloud buckets and then test them for publicly accessible vulnerabilities
  ☆46Updated 2 years ago
• hahwul / ras-fuzzer
  RAS(RAndom Subdomain) Fuzzer
  ☆42Updated 5 years ago
• appsecco / VyAPI
  VyAPI - A cloud based vulnerable hybrid Android App
  ☆86Updated 5 years ago
• capt-meelo / Telewreck
  A Burp extension to detect and exploit versions of Telerik Web UI vulnerable to CVE-2017-9248.
  ☆99Updated 7 years ago
• almroot / dnsresolvers
  A bash script that fetches and maintains thousands of DNS resolvers
  ☆65Updated 5 years ago
• arbazkiraak / BurpBLH
  Broken Link Hijacking Burp Extension
  ☆57Updated 6 years ago
• tsondt / oscp
  My notebook for OSCP Lab
  ☆26Updated 8 years ago
• fnk0c / dot2moon
  Tool that checks for path traversal traces in a given web application url, plus it is capable of multi-threading, set timeout and 5-layer…
  ☆46Updated 7 years ago
• destine21 / ZIPFileRaider
  ZIP File Raider - Burp Extension for ZIP File Payload Testing
  ☆72Updated 5 years ago
• appsecco / practical-recon-levelup0x02
  This repository contains all the material from the talk "Practical recon techniques for bug hunters & pentesters" given at Bugcrowd Level…
  ☆61Updated 6 years ago
• lc / cspparse
  A tool to evaluate Content Security Policies.
  ☆71Updated 5 years ago