mirror of
https://github.com/Ed1s0nZ/CyberStrikeAI.git
synced 2026-03-31 00:09:29 +02:00
46 lines
1.1 KiB
YAML
46 lines
1.1 KiB
YAML
name: "jwt-analyzer"
|
||
command: "jwt_tool"
|
||
enabled: true
|
||
short_description: "JWT令牌分析和漏洞测试工具"
|
||
description: |
|
||
高级JWT令牌分析和漏洞测试工具,用于检测JWT实现中的安全问题。
|
||
|
||
**主要功能:**
|
||
- JWT令牌分析
|
||
- 漏洞测试
|
||
- 攻击向量检测
|
||
- 令牌操作
|
||
|
||
**使用场景:**
|
||
- JWT安全测试
|
||
- 令牌分析
|
||
- 漏洞发现
|
||
- 安全测试
|
||
parameters:
|
||
- name: "jwt_token"
|
||
type: "string"
|
||
description: "要分析的JWT令牌"
|
||
required: true
|
||
flag: "-t"
|
||
format: "flag"
|
||
- name: "target_url"
|
||
type: "string"
|
||
description: "用于测试令牌操作的可选目标URL"
|
||
required: false
|
||
flag: "-u"
|
||
format: "flag"
|
||
- name: "additional_args"
|
||
type: "string"
|
||
description: |
|
||
额外的jwt-analyzer参数。用于传递未在参数列表中定义的jwt-analyzer选项。
|
||
|
||
**示例值:**
|
||
- 根据工具特性添加常用参数示例
|
||
|
||
**注意事项:**
|
||
- 多个参数用空格分隔
|
||
- 确保参数格式正确,避免命令注入
|
||
- 此参数会直接追加到命令末尾
|
||
required: false
|
||
format: "positional"
|