Skip to content
/ jwt-security-analyzer Public

Verification pipeline for detecting common JWT security vulnerabilities using industry-standard tools.

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

tkachenko0/jwt-security-analyzer

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits
.dockerignore
.dockerignore
 
 
Dockerfile
Dockerfile
 
 
README.md
README.md
 
 
secrets.txt
secrets.txt
 
 
verify.sh
verify.sh
 
 

Repository files navigation

JWT Security Analyzer

Verification pipeline for detecting common JWT security vulnerabilities using industry-standard tools.

Tools Used

  1. jwt_tool - Comprehensive vulnerability testing
  2. jwt-hack - Quick security scan
  3. jwt-cracker - Weak secret detection (10s timeout)

Usage

docker build -t jwt-analyzer .

docker run --rm jwt-analyzer <JWT_TOKEN>

docker run --rm -e CRACK_TIMEOUT=30 jwt-analyzer <JWT_TOKEN>

References

About

Verification pipeline for detecting common JWT security vulnerabilities using industry-standard tools.

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages