File tree Expand file tree Collapse file tree 1 file changed +9
-0
lines changed
Expand file tree Collapse file tree 1 file changed +9
-0
lines changed Original file line number Diff line number Diff line change 406406- jwt_tool
407407 - ` python3 jwt_tool.py -t https://api.example.com/api/working_endpoint -rh "Content-Type: application/json" -rh "Authorization: Bearer [JWT]" -M at `
408408 - < https://github.com/ticarpi/jwt_tool >
409+ - JWTAuditor
410+ - < https://jwtauditor.com/ >
411+ - < https://github.com/dr34mhacks/jwtauditor >
409412
410413###### Test JWT secret brute-forcing
411414- jwt_tool
422425- gojwtcrack
423426 - ` cat rockyou.txt | ./gojwtcrack -t mytoken.txt `
424427 - < https://github.com/x1sec/gojwtcrack >
428+ - JWTAuditor
429+ - < https://jwtauditor.com/ >
430+ - < https://github.com/dr34mhacks/jwtauditor >
425431
426432###### Abusing JWT Public Keys Without knowing the Public Key
427433- [ rsa_sig2n] ( https://github.com/silentsignal/rsa_sign2n )
443449 - < https://github.com/aress31/jwtcat >
444450- [ jwt.io] ( https://jwt.io/#debugger-io )
445451- [ JSON Web Token Attacker] ( https://portswigger.net/bappstore/82d6c60490b540369d6d5d01822bdf61 )
452+ - JWTAuditor
453+ - < https://jwtauditor.com/ >
454+ - < https://github.com/dr34mhacks/jwtauditor >
446455
447456###### Test if signature is being validated
448457- jwt_tool
You can’t perform that action at this time.
0 commit comments