RS256-2-HS256 : JWT Attack To Change Algorithm RS256 to HS256

April 23, 2020

RS256-2-HS256 is a JWT Attack to change the algorithm RS256 to HS256.

Usage

Usage: RS256_2_HS256_JWT.py [-h] payload pubkey

Positional Arguments:
payload JSON payload from JWT to attack
pubkey Public key file to use for signing

Optional Arguments:
-h, –help show this help message and exit

Also Read – Burp-Exporter : Request To Clipboard With Multiple Programming Languages Functions

Example

Download

RS256-2-HS256 : JWT Attack To Change Algorithm RS256 to HS256

APPLICATIONS

Censys-Python : An Easy-To-Use & Lightweight API Wrapper For The Censys Search Engine

Malice : VirusTotal Wanna Be – Now with 100% more Hipster

Evillimiter : Tool that Limits Bandwidth of Devices on the Same Network Without Access

How to Secure your Browsers from Malicious Extensions?

HOT NEWS

CVE-Vulnerability-Information-Downloader : Downloads Information From NIST (CVSS), First.Org (EPSS), And CISA...

EVEN MORE NEWS

Bomber : Navigating Security Vulnerabilities In SBOMs

EmbedPayloadInPng : A Guide To Embedding And Extracting Encrypted Payloads In...

Exploit Street – Navigating The New Terrain Of Windows LPEs

POPULAR CATEGORY

HiveJack : Internal Penetration Testing To Dump Windows Credentials

Vba2Graph – Generate Call Graphs From VBA Code For Easier Analysis...

NoSQLMap : Automated NoSQL Database Enumeration & Web Application Exploitation Tool