New update BOT for 2 modules:
1. SSRF (Server-side request forgery is a web security vulnerability that allows an attacker to cause the server-side application to make requests to an unintended location. In a typical SSRF attack, the attacker might cause the server to make a connection to internal-only services within the organization's infrastructure.)
- this module cover with blind ssrf

2. Open Redirect
this bug allows a user to control a redirect or forward to another URL. If the app does not validate untrusted user input, an attacker could supply a URL that redirects an unsuspecting victim from a legitimate domain to an attacker’s phishing site.

Our bot now support for Brute forcing JWT Weak Signing Key
in these case, if attacker know the secret key will is able to create the valid JWT token then is possible to
escalated bug Insecure Direct Object Reference (IDOR) by manipulate the JWT payload.

as you can see, the sample JWT the payload are cracked also you can changed the role as admin
or you can manipulate the id.

We present you our new search engine service lynpawz
Lynpawz is an advanced cyber security search engine,it's dedicated to mapping the cyberspace
also able to scaning vulnerable especially web based with possibility CVE.

https://lynpwn.com

for more detail, you can chat directly with @CMSAssistant_bot