https://github.com/andresriancho/jwt-fuzzer
JWT fuzzer
https://github.com/andresriancho/jwt-fuzzer
appsec fuzzing hacking jwt security
Last synced: 9 months ago
JSON representation
JWT fuzzer
- Host: GitHub
- URL: https://github.com/andresriancho/jwt-fuzzer
- Owner: andresriancho
- License: gpl-3.0
- Created: 2017-01-04T14:53:02.000Z (over 9 years ago)
- Default Branch: master
- Last Pushed: 2018-07-24T15:22:37.000Z (almost 8 years ago)
- Last Synced: 2025-04-10T01:59:50.928Z (over 1 year ago)
- Topics: appsec, fuzzing, hacking, jwt, security
- Language: Python
- Size: 32.2 KB
- Stars: 105
- Watchers: 3
- Forks: 21
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
# JSON Web Token Fuzzer
[jwt-fuzzer](https://github.com/andresriancho/jwt-fuzzer) is a simple command line tool that creates
multiple, potentially invalid, strings from an initial [JSON Web Token](https://jwt.io/).
# Installation
```
$ pip install -r requirements.txt
```
# Usage
```
$ ./jwt-fuzzer --jwt={JSON Web Token} --output out.json
Generating test JSON Web Tokens...
Done!
```
Once the output file is generated you'll usually send the modified JWT using the `utils/sender` tool, which
you'll have to customize for your specific case.