Open preetkaran20 opened 1 year ago
Is your feature request related to a problem? Please describe. The scan rules present at https://github.com/SasanLabs/owasp-zap-jwt-addon/tree/master/src/main/java/org/zaproxy/zap/extension/jwt/attacks are not having header param injections mentioned at https://portswigger.net/web-security/jwt. There are few other attacks which may not be present in AttackVectors.
Describe the solution you'd like Add the Attack vectors for the left over injections as described at https://portswigger.net/web-security/jwt
Is your feature request related to a problem? Please describe. The scan rules present at https://github.com/SasanLabs/owasp-zap-jwt-addon/tree/master/src/main/java/org/zaproxy/zap/extension/jwt/attacks are not having header param injections mentioned at https://portswigger.net/web-security/jwt. There are few other attacks which may not be present in AttackVectors.
Describe the solution you'd like Add the Attack vectors for the left over injections as described at https://portswigger.net/web-security/jwt