• Stars
    star
    241
  • Rank 167,643 (Top 4 %)
  • Language
    Java
  • License
    GNU General Publi...
  • Created almost 8 years ago
  • Updated 4 months ago

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

JWT Support for Burp

build status licence open issues

JWT4B

JSON Web Tokens (JWT) support for the Burp Interception Proxy. JWT4B will let you manipulate a JWT on the fly, automate common attacks against JWT and decode it for you in the proxy history. JWT4B automagically detects JWTs in the form of 'Authorization Bearer' headers as well as customizable post body parameters and body content.

Logo

Screenshots

Screenshot - Intercept View

Screenshot - Decode View

Screenshot - Suite Tab View

Testing

The following url contains links to four pages which simulate a JWT being sent via XHR or as cookie. https://oz-web.com/jwt/

Configuration

A config file will be created under "%user.home%.JWT4B\config.json" with the following content:

{
  "resetEditor": true,
  "highlightColor": "blue",
  "interceptComment": "Contains a JWT",
  "jwtKeywords": [
    "Authorization: Bearer",
    "Authorization: bearer",
    "authorization: Bearer",
    "authorization: bearer"
  ],
  "tokenKeywords": [
    "id_token",
    "ID_TOKEN",
    "access_token",
    "token"
  ],
  "cveAttackModePublicKey": "MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuNCJ/1Tawe8DUIbQDxjRr+bVSoIdcOjJm5wskbMUjHopTWERzLo65yLPjCVcRudQ8DNJIs3yb+hzxi0b8uyKXK6nYTaxdwtRN61NMgI/ecNYw1A3nMLRJ4KetLCUqCehVV+OavJqwGXb0k4OhJu7VefLD9PxOQxLd/MxJLMTChqYYQWY069oNTB9uRaBRLwcEv3i8uiM3HAdx4di0FZLHN5yAt6Zq7TR53CUDSI74q/AH4zeuo+D/UscVTq2bInfJmN3NdA6XqPdjnu6DtT7VQZif+06sFXgnoieuUaeRE0Jn8ZY72hljToFZmsLUPPhTSzmFTgko4+MGnS29w1rbQIDAQAB",
  "cveAttackModePrivateKey": "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"
}

Changing the config requires a reload of the extension or BURP. If you messed something up, just delete the file, it will be created again with the default values. Note: If resetEditor is set to false, all options such as the re-singing and alg attack won't be reset for every new request. This might be useful when working in the repeater.

Building your own version (with Eclipse)

  1. Clone repository and create new Eclipse Java Project
  2. Rightclick -> Configure -> Convert to Maven Project (downloading all required libraries)
  3. Open Burp -> Extender -> APIs -> Save interface files -> Copy all files to JWT4B\src\burp
  4. Export runnable fat JAR including libraries
  5. Load the JAR in Burp through the Extender Tab -> Extensions -> Add (Good to know: CTRL+Click on a extension to reload it)

Installation from BApp Store

This extension is available in the BApp Store.

More Repositories

1

tld_scanner

Scan all possible TLD's for a given domain name
Python
78
star
2

consoleSSLlabs

Automate scans using Qualys SSL Labs
Shell
18
star
3

vulnrep

vulnerability reporting tool powered by vulners.com and wpvulndb.com
Java
12
star
4

hiJack

subdomain hijack testing
Java
7
star
5

EasyVisit

PHP
6
star
6

ca-cli

toolset for setting up & issuing certificates with your own mini-CA
Shell
5
star
7

check_curl

Shell
4
star
8

htmljpeginception

HTML
4
star
9

microblog

Β΅ blog - easy to set up, configure. php only - no db required - Demo:
PHP
4
star
10

mixed-content-checker

java cli tool for crawling whole websites for mixed-content issues
Java
4
star
11

check_snmp

icinga 2 monitoring script for snmp with regex support
Shell
4
star
12

BFD

BFD (Brute-Force Demo) is a simple demonstration of a brute-force attack against password protected ZIP files
CSS
3
star
13

metacleaner

clean metadata in a batch job manner
Java
3
star
14

PKA

process killer app
Java
2
star
15

check_mailbox

Icinga 2 - IMAP and POP3 mailbox check command
Shell
2
star
16

jpg

Small JPG analyzer
C
2
star
17

check_smtp

check smtp command for icinga 2
Shell
2
star
18

urls

PHP URL shortener
PHP
2
star
19

langjs

lightweight language framework for your frontend
JavaScript
1
star
20

harambe

HTML
1
star
21

check_radius

Checks if your radius server is serving client connections
Shell
1
star
22

check_ram

Shell
1
star
23

PTK

Phishing Toolkit
Java
1
star
24

macos10.13_mail_insec_auth_fix

Resources to fix the broken "allow insecure authentication" functionality in macOS 10.13
Java
1
star
25

sms_webui

JavaScript
1
star
26

deployeye

Deploy Eye keeps an eye on your deployed services
JavaScript
1
star
27

zimlet-blueprint

A blueprint / skeleton for zimlet (zimbra 8) plugin development
JavaScript
1
star
28

php-app-updater

basic update mechanism (server & client) for php applications
PHP
1
star
29

MailSmokeTester

Enables you to run JSON based Mail Smoke Test Cases
Java
1
star
30

angulardirectives

nifty stuff
HTML
1
star
31

ReadOnly

"Intelligent" Wrapper for Diskparts ReadOnly Feature
Java
1
star
32

metacleanerwp

wordpress plugin to strip metadata on fileupload
PHP
1
star
33

MailChimpListMemberHistory

Display the history of your MailChimp List member count.
PHP
1
star
34

automated-api-testing

Set up API / web test cases with ease!
Java
1
star