A tool to test security of json web token
-
Updated
Mar 12, 2021 - Python
A tool to test security of json web token
Node JS , Typescript , Express based reactive microservice starter project for REST and GraphQL APIs
OWASP PTK - application security browser extension.
JWTLens - Burp Suite extension for automated JWT security testing. 62 checks: passive scanning, algorithm confusion, signature bypass, KID injection, weak secret brute force, and a built-in JWT Forge tab. Works automatically as you browse.
A lightweight offensive security recon framework for modern bug bounty workflows.
Spring boot with JWT security and refresh token.
Implementing JWT security based using Spring boot
Attacker-minded, 100% client-side JWT toolkit — decode, audit & forge tokens. Generates alg:none, key-confusion, kid-injection & brute-force attacks with ready-to-run curl/Burp/nuclei exports. The security alternative to jwt.io.
A comprehensive Food Delivery System built with Spring Boot providing RESTful APIs for managing restaurants, menu items, orders, and users. Features JWT authentication, role-based authorization, order tracking, and complete restaurant management capabilities.
A lightweight Rust CLI for authorized JWT security testing and lab use.
🔭 JWTelescope is an advanced CLI tool for decoding, inspecting, and performing security analysis on JSON Web Tokens (JWTs). It is designed for bug bounty hunters, pentesters, and developers who want fast insight into JWT structure, claims, and common misconfigurations.
A command-line toolkit for inspecting, verifying, cracking, and securing JSON Web Tokens. built to expose how JWT signing works and where it breaks.
A browser-based JWT security toolkit that decodes, audits, brute-forces weak secrets, forges tampered tokens, and simulates real-world attacks — with instant Python/PyJWT fix code generation.
A .NET CLI tool that performs static analysis on C# source code to detect insecure or misconfigured JWT authentication patterns.
A high-scale, task management ecosystem built with Spring Boot 4.0.2 and Java 25. Features a trustless JWT security model, cross-service orchestration via OpenFeign, and high availability through Resilience4j and Eureka service discover
This project demonstrates production-ready JWT security with Spring Security 6, role-based access control, token revocation, and comprehensive API documentation. Includes H2 database, password encryption, and protected endpoints with full logout functionality.
A modern JWT security library for Java supporting authentication, token validation, and secure request handling.
JWT attack toolkit — decode, crack, forge, alg:none, RS256->HS256 key confusion, kid injection. Pure-stdlib CLI.
JWT Analyzer is a C# CLI tool that reads, scans, and edits JSON Web Tokens for security analysis. It helps identify common JWT misconfigurations, decode claims, and modify tokens for testing purposes. Designed as an early-stage project for educational and authorized security testing.
Full-Stack Event Booking System featuring Double-Layer OTP Verification (Account & Event Booking). Built with the MERN Stack, it includes a comprehensive Admin Control Center for manual event orchestration, user management, and secure booking workflows.
Add a description, image, and links to the jwt-security topic page so that developers can more easily learn about it.
To associate your repository with the jwt-security topic, visit your repo's landing page and select "manage topics."