Skip to content

Commit f07d70d

Browse files
carlospolopgitbook-bot
carlospolop
authored and
gitbook-bot
committed
GitBook: [master] one page modified
1 parent 8f8eb9f commit f07d70d

File tree

1 file changed

+2
-3
lines changed

1 file changed

+2
-3
lines changed

pentesting-web/hacking-jwt-json-web-tokens.md

Lines changed: 2 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -50,9 +50,8 @@ cd jwtcrack
5050
#Bruteforce using crackjwt.py
5151
python crackjwt.py eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1widXNlcm5hbWVcIjpcImFkbWluXCIsXCJyb2xlXCI6XCJhZG1pblwifSJ9.8R-KVuXe66y_DXVOVgrEqZEoadjBnpZMNbLGhM8YdAc /usr/share/wordlists/rockyou.txt
5252

53-
#Bruteforce using john
54-
python jwt2john.py eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1widXNlcm5hbWVcIjpcImFkbWluXCIsXCJyb2xlXCI6XCJhZG1pblwifSJ9.8R-KVuXe66y_DXVOVgrEqZEoadjBnpZMNbLGhM8YdAc > jwt.john
55-
john jwt.john #It does not work with Kali-John
53+
#John
54+
john jwt.txt --wordlist=wordlists.txt --format=HMAC-SHA256
5655

5756
#https://github.com/ticarpi/jwt_tool
5857
python3 jwt_tool.py -d wordlists.txt <JWT token>

0 commit comments

Comments
 (0)