Author: Marco Brotto
This project aims to brute force a JWT token that is signed with the algorithm HS256 (a.k.a., HMAC SHA-256).
- Clone this repository:
git clone https://github.com/ciastron/JWT_brute_force.git - Change directory:
cd JWT_brute_force - Activate a virtual environment:
python3 -m venv ./venv && source venv/bin/activate(to deactivate itdeactivate) - Install all the requirements:
pip3 install -r requirements.txt
Exastive password list can be found here.