2.7

• Feature: Consider request header values with a JWT such as "Token: ey.ey.ey"
• Fix: Height of about window

2.6

fix: cookie parse bug introduced in 2.5
improve: make extension aware of burp font

2.5

• improve: Using Burp Montaya API

• improve: header detection now checks all headers that start with "Bearer"

• fix: jwts in cookies that contain a = (valid b64) now parsed correctly

• fix: prevent resign key field to break on small window sizes

• cleaning up about tab

2.4

Fixed: Cookie data HTML not rendered within Intercept tab
HTML rendering has been disabled within Burp extensions and needs to be re-enabled on a per-component basis.

Thanks https://github.com/DolphFlynn for the PR

2.3

Fixed: Displaying HTML formatted text properly again with new Burp versions
Fixed: Changed JSON library to prevent erroneous encoding when pretty printing JWT contents
Feature: Support for o365 JWT attack
Feature: Support for keys in hexadecimal form
Misc: Refactoring

2.2

• Support for BURPs dark theme
• Bugfixes & Refactoring
• Updating old libraries

Big thanks to @DolphFlynn

Bugfix

Added by @DolphFlynn
Fixed NPE when key null and using JWT tokens with RS256 or ES256 algorithms

Realtime Intercept Tab

• The intercept tab now provides realtime updates to the JWT
• Redesigned intercept tab GUI elements
• Bug fixes

Compability with Pro v2021.2

JWT4B is now compatible with Burp Pro v2021.2 and doesn't require a restart of burp after initializing the plugin anymore, in order to be able to type in the JWT text areas.

Furthermore, the UI layout was improved in order to work better with smaller window sizes / scaling and text area border frames (due to the new look and feel of burp).

Bugfix

• Addressing #45 by removing a change that stripped newlines in secrets