A simple tool to exploit JWT vulnerabilities.
- None algorithm attack
- KID Header injection
- Algorithm confusion
If you need to perform another attack, you can use the "custom" function to modify the fields you want and choose your own signing key.
-
Notifications
You must be signed in to change notification settings - Fork 0
hakaioffsec/jwt-hunter
Folders and files
| Name | Name | Last commit message | Last commit date | |
|---|---|---|---|---|
Repository files navigation
About
Simple tool for exploiting JWT vulnerabilities
Resources
Stars
Watchers
Forks
Releases
No releases published
Packages 0
No packages published