View Issue Details

IDProjectCategoryView StatusLast Update
0007238Kali LinuxQueued Tool Additionpublic2023-08-16 13:34
Reportertonyg73 Assigned Tosteev  
Status resolvedResolutionno change required 
Product Version2021.2 
Summary0007238: Want to submit two PowerShell modules as tool requests...can I?

Hello, before I go through the process of submitting these, would Kali accept PowerShell modules given that the latest version comes with 7.1.3? I've developed the two of these on Ubuntu and tested them on Kali. The first is a JWT/JWK (JSON Web Token/JSON Web Key) module that allows a tester to determine weaknesses in a JWT validation endpoint by crafting various attacks as well as brute-forcing HS256 signed JWTs. Examples in the Readme under "JWT attacks":

The second is a GraphQL module that at this time contains a single cmdlet, Invoke-GraphQLQuery which allows a tester to perform postive and negative testing against a GraphQL endpoint. I posted the solutions to the "Damn Vulnerable GraphQL application" in the Readme here:

I've used both of the above in combination to validate the security of GraphQL endpoints as most of these endpoints employ JWTs for authentication/authorization.

Thanks in advance!

Steps To Reproduce

Tool request so n/a

Additional Information




2021-06-25 14:44

manager   ~0014854

We can definitely evaluate them for inclusion - just please open a separate request for each one!

Issue History

Date Modified Username Field Change
2021-06-25 14:28 tonyg73 New Issue
2021-06-25 14:44 steev Assigned To => steev
2021-06-25 14:44 steev Status new => resolved
2021-06-25 14:44 steev Resolution open => no change required
2021-06-25 14:44 steev Note Added: 0014854
2023-08-16 13:34 g0tmi1k Category New Tool Requests => Queued Tool Addition