Skip to content

wheatstalk/jwt-fuzzer

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

26 Commits
jwtfuzzer
jwtfuzzer
 
 
utils
utils
 
 
.gitignore
.gitignore
 
 
Dockerfile
Dockerfile
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
jwt-fuzzer
jwt-fuzzer
 
 
requirements.txt
requirements.txt
 
 

Repository files navigation

JSON Web Token Fuzzer

jwt-fuzzer is a simple command line tool that creates multiple, potentially invalid, strings from an initial JSON Web Token.

Usage

docker run --rm -v "$PWD:/output" wheatstalk/jwt-fuzzer --jwt={JSON Web Token} --output out.json

This will produce out.json containing JSON that looks like:

[
    {
        "jwt": "HEADER.PAYLOAD.SIGNATURE", 
        "fuzzing_function": null
    }, 
    {
        "jwt": "HEADER.PAYLOAD.SIGNATURE", 
        "fuzzing_function": "header_alg_empty-0"
    }, 
    {
        "jwt": "HEADER.PAYLOAD.SIGNATURE", 
        "fuzzing_function": "header_alg_remove-0"
    },
    ... 60-something variations  
]

About

JWT fuzzer

Resources

Readme

License

GPL-3.0 license
Activity
Custom properties

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • Python 99.6%
  • Dockerfile 0.4%