JWTXploiter is a tool to test security of JSON Web Tokens. Test a JWT against all known CVEs; Tamper with the token payload: changes claims and subclaims values. Exploit known vulnerable header claims (kid, jku, x5u) Verify a token Retrieve the public key of your target’s ssl connection and try to use it in a …
Continue reading “JWTXploiter : A Tool To Test Security Of Json Web Token”