-
Notifications
You must be signed in to change notification settings - Fork 361
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Duplicate JWTs #1309
Labels
Milestone
Comments
TheTechromancer
added
enhancement
New feature or request
and removed
bug
Something isn't working
labels
Apr 25, 2024
I like the idea, but i agree with the low priority tag as it would be a relatively big project for a small reward. |
Moving JWT parsing into the event validation seems pretty small compared to most of the other reworks that are happening. Unless I'm missing something. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Duplicate JWTs are a problem. When you enable the web spider on a JWT-enabled website, you are likely to get two JWT events from every URL (one from excavate and one from badsecrets). That means if you spider a single website that has 1000 URLS, you will get 2000 JWTs that are effectively all the same.
I think the best way to solve this is to have a dedicated JWT event that intelligently dedupes itself by its contents, disregarding any one-time information like nonces/timestamps. This will ensure that equivalent JWTs won't be duplicated across the scan.
The text was updated successfully, but these errors were encountered: