Giters

kuskoman / JWTCracker

Very simple console application for bruteforcing JSON Web Tokens

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

jsonwebtokenjwtpassword-cracker

JWTCracker

JWTCracker is a very simple command line application used to look for JWT secret using brute force method.

This library is created purely for learning pouropses- if you are looking for real tool for cracking JSON Web Token you should probably take a look on Hashcat, JohnTheRipper, or c-jwt-cracker.

Usage

The application takes JWT as the only argument- it should automatically detect used alghoritm and start looking for the valid signature.

Without building

go run . <jwt-you-want-to-crack>

Building the library first

go build .
./<name of the created executable> <jwt-you-want-to-crack>

Supported alghoritms

  • HS256
  • HS384
  • HS512

Contributors:

Thanks to u/gnisten_ for fixing header recognition.

About

Very simple console application for bruteforcing JSON Web Tokens

jsonwebtokenjwtpassword-cracker

License:MIT License

Languages

Language:Go 100.0%