owasp-zap-jwt-addon
owasp-zap-jwt-addon copied to clipboard
Adding Attack vector for finding vulnerabilities related to JWE
Is your feature request related to a problem? Please describe.
We have currently only handing JWS but we have not handled JWE so under this enhancement we are looking to add:
- Analysing Vulnerabilities related to JWE by going through various blogs, bug bounties, other scanner add-on's
- Implement the Attack vectors
- Adding the Vulnerable code in https://github.com/SasanLabs/VulnerableApp/blob/master/src/main/java/org/sasanlabs/service/vulnerability/jwt/JWTVulnerability.java so that we can test the attack vectors.
- Add a design document regarding the same.
Code References Attack vectors: https://github.com/SasanLabs/owasp-zap-jwt-addon/tree/master/src/main/java/org/zaproxy/zap/extension/jwt/attacks Adding Support for parsing JWE: https://github.com/SasanLabs/owasp-zap-jwt-addon/blob/ec58672c0951a23cf4544fd0e41b72eb9328a78d/src/main/java/org/zaproxy/zap/extension/jwt/utils/JWTUtils.java#L139 Fuzzer code: https://github.com/SasanLabs/owasp-zap-jwt-addon/blob/master/src/main/java/org/zaproxy/zap/extension/jwt/fuzzer/ui/JWTFuzzPanelView.java Scan Rule code: https://github.com/SasanLabs/owasp-zap-jwt-addon/blob/master/src/main/java/org/zaproxy/zap/extension/jwt/JWTActiveScanRule.java
Testing the changes build the addon by running
- ./gradlew spotlessApply
- ./gradlew build Then go to the ZAP -> File -> Local addon file -> Navigate to project -> build -> bin -> jwt*.zap and done.