Merge pull request #8 from CompassSecurity/tobiashort/improvements

Tobiashort/improvements

Author: dcaluzi

.gitignore

@@ -1,38 +1,8 @@
-target/
-!.mvn/wrapper/maven-wrapper.jar
-!**/src/main/**/target/
-!**/src/test/**/target/
-
-### IntelliJ IDEA ###
-.idea/modules.xml
-.idea/jarRepositories.xml
-.idea/compiler.xml
-.idea/libraries/
-*.iws
-*.iml
-*.ipr
-
-### Eclipse ###
-.apt_generated
+.DS_Store
 .classpath
-.factorypath
+.gradle
+.idea
 .project
 .settings
-.springBeans
-.sts4-cache
-
-### NetBeans ###
-/nbproject/private/
-/nbbuild/
-/dist/
-/nbdist/
-/.nb-gradle/
-build/
-!**/src/main/**/build/
-!**/src/test/**/build/
-
-### VS Code ###
-.vscode/
-
-### Mac OS ###
-.DS_Store
+build
+version.txt

.idea/.gitignore

@@ -0,0 +1,11 @@
+<p>JWT Scanner is a Burp Suite extension for automated testing of JSON Web Token (JWT) implementations of web applications. </p>
+
+<p>JWT Scanner performs the following checks:</p>
+<ul>
+    <li>Signature presence</li>
+    <li>Invalid signatures</li>
+    <li>Signatures with empty passwords</li>
+    <li>Usage of algorithm none variations</li>
+    <li>Invalid ECDSA parameters (CVE-2022-21449)</li>
+    <li>JWT JWK injection</li>
+</ul>

.idea/encodings.xml

@@ -0,0 +1,13 @@
+Uuid: f13f85e71b9a4bac853ab8a38147a2e1
+ExtensionType: 1
+Name: JWT Scanner
+RepoName: jwt-scanner
+ScreenVersion: 2.0.0
+SerialVersion: 2
+MinPlatformVersion: 0
+ProOnly: False
+Author: Dario Caluzi / Cyrill Bannwart / Tobias Hort-Giess
+ShortDescription: JWT Scanner is a Burp Suite extension for automated testing of JSON Web Token (JWT) implementations of web applications. 
+EntryPoint: build/libs/jwt-scanner-2.0.0.jar
+BuildCommand: ./gradlew jar
+SupportedProducts: Pro