Exploits/Projects

4:56:00 PM Unknown 0 Comments


we build a hobbyist projects and testing some new vulnerabilities .We share with you some of our mind set map .

Jwt-Bypass / Author => Chouaib

###What is JSON Web Token?
JSON Web Token (JWT) is an open standard (RFC 7519) that defines a compact and self-contained way for securely transmitting information between parties as a JSON object. This information can be verified and trusted because it is digitally signed. JWTs can be signed using a secret (with the HMAC algorithm) or a public/private key pair using RSA.
A JSON Web Token [JWT] consists of three parts; an encoded Header, an encoded Payload and the Signature as shown below:

Multi Architecture Linux System / author => Chouaib

Multiarch is the term being used to refer to the capability of a system to install and run applications of multiple different binary targets on the same system. For example running a i386-linux-gnu application on an amd64-linux-gnu system. This example is the most common case, but many other working combinations are possible, such as armel and armhf.
Multiarch also simplifies cross-building, where foreign-architecture libraries and headers are needed on a system during building.
The existing proposals allow for the co-installation of libraries and headers for different architectures, but not (yet) binaries. So you can have either the i386 version of a binary, or the amd64 version, but not both (using conventional /bin paths). All the dependencies will be installed and available for the corresponding binary.


Multiarch is a significant and powerful development, and affects many processes and aspects of the system. The immediate practical effects are getting rid of the ia32-libs package, and allowing proper cross-architecture dependencies for cross-building.

AngryFuzz3r project / author => Sold1er

AngryFuzz3r is a collection of tools for pentesting to gather information and discover vulnerabilities of the targets based on Fuzzedb https://github.com/fuzzdb-project/fuzzdb project

UrlFuzz3r->AngryFuzz3r_1

Discover hidden files and directories on a web server. The application tries to find url relative paths of the given website by comparing them with a given set .

Get the primes of a number - frequently used for the RSA tasks {CTFs} / author ==> Sold1er


Link of the project : https://github.com/ihebski/factordb

0 comments: