jwtXploiter
Pentest-Notes
jwtXploiter | Pentest-Notes | |
---|---|---|
3 | 1 | |
257 | 329 | |
- | - | |
0.0 | 1.8 | |
about 3 years ago | over 1 year ago | |
Python | XSLT | |
GNU General Public License v3.0 only | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
jwtXploiter
- New Release Jwtxploiter
- Jwtxploiter
-
Sunday Daily Thread: What's everyone working on this week?
I'm working on my jwtXploiter, a tool to exploit vulnerabilities of JSON Web Token. I'm also looking for contributors with more experience than me in open source.
Pentest-Notes
What are some alternatives?
PyHP - package/application for embedding and using Python (almost) like PHP.
mageni - Open-source vulnerability scanner
SSTImap - Automatic SSTI detection and exploitation tool with interactive interface
hollows_hunter - Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).
CyberSecurity - A collection of essential and foundational cybersecurity knowledge, thoughtfully organized for easy comprehension.
dradis-ce - Dradis Framework: Collaboration and reporting for IT Security teams
miniss - Displays a list of open listening sockets. It is a minimal alternative to ss or netstat.
Villain - Villain is a C2 framework that can handle multiple TCP socket & HoaxShell-based reverse shells, enhance their functionality with additional features (commands, utilities etc) and share them among connected sibling servers (Villain instances running on different machines).
o365spray - Username enumeration and password spraying tool aimed at Microsoft O365.
favirecon - Use favicon.ico to improve your target recon phase. Quickly detect technologies, WAF, exposed panels, known services.
petep - PETEP (PEnetration TEsting Proxy) is an open-source Java application for traffic analysis & modification using TCP/UDP proxies. PETEP is a useful tool for performing penetration tests of applications with various application protocols. ⚡
WhatWeb - Next generation web scanner