2.8.1

This release contains fixes addressing the bugs introduced with 2.8 - sorry about that.

• 'JSON Web Tokens' Suite Tab fixed
• Cleanup log output

2.8

• Feature: support for custom authorization types (i.e. headers such as: X-ABC eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ1c2VybmFtZSI6Ind3dy5iZWpzb24uY29tIiwic3ViIjoiZGVtbyJ9.BAklbCVA0KK3OQRc1YNofALqSKoBHrIKLdPjQoX9lqc)

• Feature: auto detect jwt secret
  

Thanks to https://github.com/xiaoshi-friday for providing the two PRs!

2.7

• Feature: Consider request header values with a JWT such as "Token: ey.ey.ey"
• Fix: Height of about window

2.6

fix: cookie parse bug introduced in 2.5
improve: make extension aware of burp font

2.5

• improve: Using Burp Montaya API

• improve: header detection now checks all headers that start with "Bearer"

• fix: jwts in cookies that contain a = (valid b64) now parsed correctly

• fix: prevent resign key field to break on small window sizes

• cleaning up about tab

2.4

Fixed: Cookie data HTML not rendered within Intercept tab
HTML rendering has been disabled within Burp extensions and needs to be re-enabled on a per-component basis.

Thanks https://github.com/DolphFlynn for the PR

2.3

Fixed: Displaying HTML formatted text properly again with new Burp versions
Fixed: Changed JSON library to prevent erroneous encoding when pretty printing JWT contents
Feature: Support for o365 JWT attack
Feature: Support for keys in hexadecimal form
Misc: Refactoring

2.2

• Support for BURPs dark theme
• Bugfixes & Refactoring
• Updating old libraries

Big thanks to @DolphFlynn

Bugfix

Added by @DolphFlynn
Fixed NPE when key null and using JWT tokens with RS256 or ES256 algorithms

Realtime Intercept Tab

• The intercept tab now provides realtime updates to the JWT
• Redesigned intercept tab GUI elements
• Bug fixes