JWT-Hack is tool for hacking / security testing to JWT. Supported for En/decoding JWT, Generate payload for JWT attack and very fast cracking(dict/brutefoce).


  • go-get(dev version)

$ go get -u github.com/hahwul/jwt-hack

  • homebrew

$ brew tap hahwul/jwt-hack
$ brew install jwt-hack

  • snapcraft

$ sudo snap install jwt-hack


d8p 8d8 d88 888888888 888 888 ,8b. doooooo 888 ,dP
88p 888,o.d88 ’88d __ 88888888 88’8o d88 888o8P’
88P 888PY8b8 '888 XXXXXX 88P 888 88PPY8. d88 888 Y8L 88888' 88P YP8 '88p 88P 888 8bY’ d888888 888 `8p
Hack the JWT(JSON Web Token) | by @hahwul | v1.0.0

jwt-hack [command]

Available Commands:
crack Cracking JWT Token
decode Decode JWT to JSON
encode Encode json to JWT
help Help about any command
payload Generate JWT Attack payloads
version Show version

-h, –help help for jwt-hack