1140 Open source projects that are alternatives of or similar to JWTweak

A Tool for Domain Flyovers

Security Manage Framwork is a security management platform for enterprise intranet, which includes asset management, vulnerability management, account management, knowledge base management, security scanning automation function modules, and can be used for internal security management. This platform is designed to help Party A with fewer security personnel, complicated business lines, difficult periodic inspection and low automation to better achieve internal safety management.

Intelligence tool but without API key

Some good resources for getting started with application security

Bucket Flaws ( S3 Bucket Mass Scanner ): A Simple Lightweight Script to Check for Common S3 Bucket Misconfigurations

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

Some of my security stuff and vulnerabilities. Nothing advanced. More to come.

A Python3 based single-file subdomain enumerator

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

Quiver is the tool to manage all of your tools for bug bounty hunting and penetration testing.

Rescope is a tool geared towards pentesters and bugbounty researchers, that aims to make life easier when defining scopes for Burp Suite and OWASP ZAP.

A Powerful Subdomain Takeover Tool

Burp Extension for testing authorization issues. Automated request repeating and parameter value extraction on the fly.

OWASP Zed Attack Proxy project landing page.

vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises.

Do some quick reconnaissance on a domain-based web-application

A Keycloak Mobile Implementation using Angular v4 and Ionic v3

Repository of my CTF writeups

Open Policy Agent for Spring Security

Raven-Storm is a powerful DDoS toolkit for penetration tests, including attacks for several protocols written in python. Takedown many connections using several exotic and classic protocols.

Sequelize adapter for Casbin

PowerAuth - Open-source solution for authentication, secure data storage and transport security in mobile banking.

Build simple and robust authorization systems with just Elixir and Plug

This repository will be updated with all the examples and links that I can find with relevant knowledge & information about CP in MS Windows vista up to version 10.

A collection of special paths linked to major web CVEs, known misconfigurations, juicy APIs ..etc. It could be used as a part of web content discovery, to scan passively for high-quality endpoints and quick-wins.

A Scalable Client Authentication & Authorization System for Container-based Environments

Security tool to quickly audit Public Box files and folders.

Quick utility to craft executables for pentesting and managing reverse shells

Facebook Write-ups, PoC, and exploitation codes:

Vendor-Neutral Security Tool Automation Controller (over REST)

An authorization library that supports access control models like ACL, RBAC, ABAC in Delphi

Open Redirect scanner - (out of date)

A collection of over 5.1 million sub-domains and assets belonging to public bug bounty programs, compiled into a repo, for performing bulk operations.

A starter template for creating JWT token from ASP.NET Core API project and applying that JWT token authentication on React application

List of bug bounty and coordinated vulnerability disclosure programs of companies/organisations in Switzerland

List of every possible vulnerabilities in computer security.

Restify middleware that validates a JsonWebToken

No description or website provided.

Hashtopolis - A Hashcat wrapper for distributed hashcracking

Multithreaded Plugin based vulnerability scanner for mass detection of web-based applications vulnerabilities

Node.js Demo for Token Based Authentication (JWT) with MySQL database

Flutter Reverse Engineering Framework

The easiest JWT library to GO

🔐 Vulnerability remediation scoring system

Native Laravel Authorization.

Erebus is a fast tool for parameter-based vulnerability scanning using a Yaml based template engine like nuclei.

Authorized Model Attributes for Laravel

🖇 Enumerate git repository URL from list of URL / User / Org. Friendly to pipeline

An open source framework for using banking API's built for PSD2 regulation.

Authentication provider agnostic authorization plugin for HapiJS

BugBounty Tool

Reusable application for Django to ease sign up & sign in processes

An Erlang Macaroons library compatible with libmacaroons

Dictates what your users see. Plug-based authorization.

A minimalist Crystal authorization system inspired by https://github.com/varvet/pundit.

Companion code sample for my blog post - Configuring Role-based Authorization with client-side Blazor

Pre-connection attacks, gaining access & post-connection attacks on WEP, WPA & WPA2. 🛰✔️

Libellux: Up & Running provides documentation on how-to install open-source software from source. The focus is Zero Trust Network to enhance the security for existing applications or install tools to detect and prevent threats.

anewer appends lines from stdin to a file if they don't already exist in the file. This is a rust version of https://github.com/tomnomnom/anew