RS256-2-HS256 : JWT Attack To Change Algorithm RS256 to HS256

RS256-2-HS256 is a JWT Attack to change the algorithm RS256 to HS256.

Usage

Usage: RS256_2_HS256_JWT.py [-h] payload pubkey

Positional Arguments:
payload JSON payload from JWT to attack
pubkey Public key file to use for signing

Optional Arguments:
-h, –help show this help message and exit

Also Read – Burp-Exporter : Request To Clipboard With Multiple Programming Languages Functions

Example

Download

R K

Next goBox : GO Sandbox To Run Untrusted Code »

Previous « PEASS - Privilege Escalation Awesome Scripts SUITE

Published by

R K

Tags: HS256RS256RS256-2-HS256

5 years ago

Bomber : Navigating Security Vulnerabilities In SBOMs

bomber is an application that scans SBOMs for security vulnerabilities. So you've asked a vendor…

10 hours ago

Malware

EmbedPayloadInPng : A Guide To Embedding And Extracting Encrypted Payloads In PNG Files

Embed a payload within a PNG file by splitting the payload across multiple IDAT sections.…

10 hours ago

Cyber security

Exploit Street – Navigating The New Terrain Of Windows LPEs

Exploit-Street, where we dive into the ever-evolving world of cybersecurity with a focus on Local…

2 days ago

Hacking Tools

ShadowDumper – Advanced Techniques For LSASS Memory Extraction

Shadow Dumper is a powerful tool used to dump LSASS (Local Security Authority Subsystem Service)…

3 days ago

Hacking Tools

Shadow-rs : Harnessing Rust’s Power For Kernel-Level Security Research

shadow-rs is a Windows kernel rootkit written in Rust, demonstrating advanced techniques for kernel manipulation…

2 weeks ago

Cyber security

ExecutePeFromPngViaLNK – Advanced Execution Of Embedded PE Files via PNG And LNK

Extract and execute a PE embedded within a PNG file using an LNK file. The…

3 weeks ago