View Issue Details

IDProjectCategoryView StatusLast Update
0006888Kali Linux[All Projects] Queued Tool Additionpublic2021-01-09 14:40
Reportertyki6 Assigned To 
Status acknowledgedResolutionopen 
Product Version 
Target VersionFixed in Version 
Summary0006888: myjwt - A cli for cracking, testing vulnerabilities on Json Web Token(JWT)
Description[Name] - myjwt

[Version] - 1.1.2

[Homepage] -

[Download] - Pypi:, Git:

[Author] - mBouamama,

[Licence] - MIT

[Description] - This cli is for pentesters, CTF players, or dev. You can decode jwt, modify your jwt, sign with a new key, rsa/hmac confusion,brute force with dictionnary, crack signature, verify signature, inject sql ,jku bypass, x5u bypass, etc....With this tool you can exploit many miss-configurations of jwt.

[Dependencies] - Python3.6, click==7.1.2,requests==2.25.0,cryptography==3.2.1,pyOpenSSL==20.0.0, all dependencies are in requirements.txt, (pyup bot enable for update)

[Similar tools] - jwt_tool, jwtcat

[Activity] - When did the project start? 01/11/2020, last commit today.

[How to install] - How do you compile it? python -m pip install myjwt==1.1.2
Installation guide here:

[How to use] - myjwt --help for all usages with all options,
ex: myjwt eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJ1c2VyIjpudWxsfQ.Tr0VvdP6rVBGBGuI_luxGCOaz6BbhC6IxRTlKOW8UjM --bruteforce ./wordlist/common_pass.txt
output: JWT cracked, key is: pentesterlab

ex: myjwt eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJ1c2VyIjpudWxsfQ.Tr0VvdP6rVBGBGuI_luxGCOaz6BbhC6IxRTlKOW8UjM -p "user=admin" --sign pentesterlab --print
new JWT: eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJ1c2VyIjoiYWRtaW4ifQ.d9nOzQ6Dc-N077EOEhFVJdvA7ufgp8qb-fLLUkIyqZc
Header: {"typ": "JWT", "alg": "HS256"}
Payload: {"user": "admin"}
Signature: "d9nOzQ6Dc-N077EOEhFVJdvA7ufgp8qb-fLLUkIyqZc"

[Packaged] - Is the tool already packaged for Debian?No



2021-01-08 13:42

administrator   ~0014064

@kali-team, please could this be packaged up.
@author, If you want to help the packaging process, you can check the documentation here ~

Issue History

Date Modified Username Field Change
2020-11-28 14:55 tyki6 New Issue
2021-01-08 13:42 g0tmi1k Note Added: 0014064
2021-01-08 13:42 g0tmi1k Status new => acknowledged
2021-01-08 13:42 g0tmi1k Category New Tool Requests => Queued Tool Addition