Tagged: Injector

JWT Key ID Injector - Simple Python Script To Check Against Hypothetical JWT Vulnerability 0

JWT Key ID Injector – Simple Python Script To Check Against Hypothetical JWT Vulnerability

Simple python script to check against hypothetical JWT vulnerability. Let’s say there is an application that uses JWT tokens signed HS256 algorithm. An example token looks like the follow: eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwiaWF0IjoxNTE2MjM5MDIyfQ.zbgd5BNF1cqQ_prCEqIvBTjSxMS8bDLnJAE_wE-0Cxg Above token can be...

Bxss - A Blind XSS Injector Tool 0

Bxss – A Blind XSS Injector Tool

A Blind XSS Injector device Characteristics Inject Blind XSS payloads into personalized headers Inject Blind XSS payloads into parameters Makes use of Various Request Methods (Set,Publish,GET,Selections) all at as soon as Device Chaining Actually...