jwt-hack

Toolkit for testing, analyzing, and exploiting JWT tokens

brewmacoslinux

Try with needOr install directly

About

JSON Web Token Hack Toolkit

jwt-hack

Decode and display JWT token contents$ jwt-hack decode eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9...

Attempt to crack JWT signature with wordlist$ jwt-hack crack -t eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9... -w /path/to/wordlist.txt

Forge a new JWT token with custom claims$ jwt-hack forge -a HS256 -s secret -c '{"sub":"user123"}'