Releases: ozzi-/JWT4B
2.4
2.3
Fixed: Displaying HTML formatted text properly again with new Burp versions
Fixed: Changed JSON library to prevent erroneous encoding when pretty printing JWT contents
Feature: Support for o365 JWT attack
Feature: Support for keys in hexadecimal form
Misc: Refactoring
2.2
- Support for BURPs dark theme
- Bugfixes & Refactoring
- Updating old libraries
Big thanks to @DolphFlynn
Bugfix
Added by @DolphFlynn
Fixed NPE when key null and using JWT tokens with RS256 or ES256 algorithms
Realtime Intercept Tab
- The intercept tab now provides realtime updates to the JWT
- Redesigned intercept tab GUI elements
- Bug fixes
Compability with Pro v2021.2
JWT4B is now compatible with Burp Pro v2021.2 and doesn't require a restart of burp after initializing the plugin anymore, in order to be able to type in the JWT text areas.
Furthermore, the UI layout was improved in order to work better with smaller window sizes / scaling and text area border frames (due to the new look and feel of burp).
Bugfix
1.13 - Bug Fixes
Fixes:
- Big numbers such as 1598358554.3746235 (i.E. in EXP / IAT attributes) won't be automatically set to exponential notation
- Improved UI in intercept tab after sending a request in the JWT tab, by displaying an empty token
Improved Error Handling
No new features, but JWT4B is now more tolerant about invalid tokens / json.