GitHub8 天
rRahul0/jwt-auth-utility
jwt-auth-utility is a lightweight and easy-to-use utility package for handling JSON Web Tokens (JWT) in Node.js applications. It simplifies the process of generating, signing, verifying, and ...
GitHub20 天
MchalTesla/JWT-Brute-Force-Tool
此项目是一个用于生成、破解和暴力破解 JSON Web Token (JWT) 的工具。该工具支持多线程优化,可以使用字典文件进行破解或使用暴力破解模式尝试所有可能的字符组合。 gen:生成未加密的 JWT。 genWithSecret:使用指定密钥生成 JWT。 crack:使用字典文件尝试破解 JWT ...
PortSwigger20 天
Working with JWTs in Burp Suite
They're commonly used in authentication, session management, and access control mechanisms. This means that if an attacker can successfully modify a JWT, they may be able to escalate their own ...
The Hacker News27 天
Malicious npm Packages Target Developers' Ethereum Wallets with SSH Backdoor
Cybersecurity researchers have discovered a number of suspicious packages published to the npm registry that are designed to harvest Ethereum private keys and gain remote access to the machine via the ...