Websocket-less web terminal with end-to-end (browser<->broker) encryption: real PTY over HTTP long-poll, ephemeral ECDH P-256 + AES-256-GCM, forward secrecy, pinned broker key.
-
Updated
Jun 27, 2026 - Python
Websocket-less web terminal with end-to-end (browser<->broker) encryption: real PTY over HTTP long-poll, ephemeral ECDH P-256 + AES-256-GCM, forward secrecy, pinned broker key.
A small JWT security testing toolkit. Ships as a Python CLI and a local Flask web UI that runs the attacks entirely in your browser via WebCrypto.
Add a description, image, and links to the webcrypto topic page so that developers can more easily learn about it.
To associate your repository with the webcrypto topic, visit your repo's landing page and select "manage topics."