JK
Uploaded byJaya Kumar Kondapalli
PPTX, PDF615 views

Pentesting jwt

The document discusses JSON Web Tokens (JWT) including their structure, security concerns, and recommendations for safe usage. It details the components of JWTs—the header, payload, and signature—and highlights vulnerabilities such as information leakage and authorization bypass. The author advocates for the use of asymmetric algorithms and proper key management to enhance security when implementing JWTs.

Embed presentation

Downloaded 16 times
{ Pentesting JWT By Jaya Kumar Kondapalli
WhoAM I? Just a Security Enthusiast Was Functional tester by chance.. Now, Penetration tester by choice.. I feel Shy talking about myself
History behind JWT? What is JWT and it’s structure? Security concerns with JWT Recommendations Agenda
Have you ever seen data like this?? eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3ODkwIi wibmFtZSI6IkpvaG4gRG9lIiwiaWF0IjoxNTE2MjM5MDIyfQ.SflKxwRJSMeKKF 2QT4fwpMeJf36POk6yJV_adQssw5c Have you observed any pattern in the above value??
Let’s go back to History: HTTP is Stateless Select queryPost /login User=Jay&pass=xyz 200 Ok Set-cookie:Name=Jay Found Jay Browser Server GET /profile Cookie:name=Jay /profile Hi Jay
Select query Post /login User=Jay&&pass=xy 200 Ok Set-cookie:sessionid=6swe.. Set id=6swe…[] Get /homepage Cookie:sessionid=6swe… Browser Server Storage where reference s 200 ok response Found Jay Id=6swe ..
Is there any alternative approach instead of storing user’s state at server side?? Statelessness which is more preferable for API’s authentication where Authentication can be done by one server(Authentication server) and resource can be retrieved by another server(resource server) Example: Any single sign on implementation
Select query Post /login User=Jay&&pass=xyz 200 Ok Set-cookie: eyr…[] Get /homepage Cookie: eyr…[] Write + Sign Verify + Read 200 ok response
A JSON Web Token (JWT) is a JSON object that is defined in RFC 7519 as a safe way to exchange set of information between two parties. The token is composed of a header, a payload, and a signature. What it JWT??
Structure of JWT?? Both Header and payload are base64 encoded values not encrypted Values.. So anyone can decode header and payload values..
{ "alg": "HS256", "typ": "JWT" } In short header says what algorithm is being used to create signature Header : Header part contains Meta Data
Claims: { "iss": "Identifier of our Authentication Server", "iat": 1504699136, "sub": "github|353454354354353453", "exp": 1504699256 } Payload: Actual data to be exchanged between two parties
• aud (audience): Recipient for which the JWT is intended • iss (issuer): Issuer of the JWT • sub (subject): Subject of the JWT (the user) • exp (expiration time): Time after which the JWT expires • nbf (not before time): Time before which the JWT must not be accepted for processing • iat (issued at time): Time at which the JWT was issued; can be used to determine age of the JWT • jti (JWT ID): Unique identifier; can be used to prevent the JWT from being replayed (allows a token to be used only once) More Claims..
HMACSHA256( base64UrlEncode(header) + "." + base64UrlEncode(payload), secret) Signature : This part handles integrity
Typical Workflow of JWT
Now, the important question what are the security concerns with JWT..??
eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3 ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwic3NuIjoiNzg5MTIzNDU2Ny IsImRvYiI6IjE1LTA4LTE5OTgiLCJpYXQiOjE1MTYyMzkwMjJ9.tEN 6j4ZeHfeU9HdcpRD9ecF37Xr48CTwxqBBYWRfAwg Since header and payload are base64 encoded, anyone can decode it to view data. If we decode above token, you can view sensitive data Information Leakage Two mitigate this issue, JWT token has to be implemented in JWE format
JWT is classified based on JOSE JWT can be implemented in Two ways 1. JWS (JSON web Signature ) 2. JWE (JSON web Encryption) To mitigate information leakage vulnerability one has to implement JWE
Decode header value and change ‘alg’ value as ‘none’ and encode it again. Since we are changing algorithm as none, no need to have signature value.. Let’s try.. Demo time: http://demo.sjoerdlangkemper.nl/jwtdemo/hs256.php Check if JWT supports ‘NONE’ as algorithm
Symmetric Algorithm(Single key concept) Asymmetric algorithm (Public key and private key concept) What are the cryptography algorithms can be used to create signature
What could be possible hacks?? Bruteforcing is possible Demo time with jwt.io In case of symmetric algorithm key strength of secret is very crucial. If it weak, it can be easily brute forcible using any brute forcing tools like (John the ripper..) What if Symmetric alg used?
Demo with RS256 What if Asymmetric alg used? What if I convert alg value from ‘RS256’ to ‘HS256’ and What if I consider public key as secret to create a signature??
 Question is how to get Public key..!!  openssl s_client -connect zonksec.com:443 | openssl x509 -pubkey -noout  Get with the help if android application exists Conti..
Possibility of authorization bypass exists if developer’s appends payload parameters into URL parameters.. Eg: Employee id parameter in both JWT token and as URL parameter GET /Empinfo?employeid=544123 Host: xyz.com Authorization:eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0 NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwic3NuIjoiOTIzNDQ1Njc5IiwiZ W1wbG95ZWlkIjoiNTQ0MTIzIiwiaWF0IjoxNTE2MjM5MDAyMn0.lLX7hN kRJzZsk_4xuzmPZwStfVe8s20caJEOqpBcrlA Note: This scenario mayn’t come into JWT’s security bucket but possibility of security threat is there if developers transmits parameters values in both as part of JWT and as part of URL parameters Authorization Bypass
Jsonwebtokens extension Json-webtokenattacker extension for checking RSA Burp Automation Support
 Recommended to use Asymmetric algorithm to create signature. Incase of symmetric algorithm key has to be shared with resource server(if multiple resource server’s exists it would be a problem..!!)  Use an appropriate Key size  Don’t pass sensitive data as part of JWT  Always verify ‘alg’ value at server side such that it should not contains ‘none’ as value for ‘alg’ field Recommendations
 https://www.sjoerdlangkemper.nl/2016/09/28/attacking-jwt- authentication/  https://github.com/hashcat/hashcat/issues/1057  https://www.nccgroup.trust/uk/about-us/newsroom-and- events/blogs/2019/january/jwt-attack-walk-through/ References:
Questions Please..!!
Thank you 

More Related Content

PPTX
Understanding JWT Exploitation
byAkshaeyBhosale
 
PDF
Introduction to JWT and How to integrate with Spring Security
byBruno Henrique Rother
 
PDF
JSON WEB TOKEN
byKnoldus Inc.
 
PDF
JSON Web Token
byDeddy Setyadi
 
PDF
Json web token
byMayank Patel
 
PDF
Jwt Security
bySeid Yassin
 
PDF
[OPD 2019] Attacking JWT tokens
byOWASP
 
PDF
JSON Web Tokens
byIvan Rosolen
 
Understanding JWT Exploitation
byAkshaeyBhosale
 
Introduction to JWT and How to integrate with Spring Security
byBruno Henrique Rother
 
JSON WEB TOKEN
byKnoldus Inc.
 
JSON Web Token
byDeddy Setyadi
 
Json web token
byMayank Patel
 
Jwt Security
bySeid Yassin
 
[OPD 2019] Attacking JWT tokens
byOWASP
 
JSON Web Tokens
byIvan Rosolen
 

What's hot

PDF
Modern API Security with JSON Web Tokens
byJonathan LeBlanc
 
PPTX
Json Web Token - JWT
byPrashant Walke
 
PPTX
Web API authentication and authorization
byChalermpon Areepong
 
PDF
An Overview of Deserialization Vulnerabilities in the Java Virtual Machine (J...
byjoaomatosf_
 
PPTX
Intro to OAuth2 and OpenID Connect
byLiamWadman
 
PDF
Modern Security with OAuth 2.0 and JWT and Spring by Dmitry Buzdin
byJava User Group Latvia
 
PDF
Using JSON Web Tokens for REST Authentication
byMediacurrent
 
PPTX
Async js
byAlexandr Skachkov
 
PDF
Applications secure by default
bySecuRing
 
PPTX
Spring Security 5
byJesus Perez Franco
 
PDF
개발자를 위한 (블로그) 글쓰기 intro
bySeongyun Byeon
 
PDF
Oracle jdk 20190827 - 今、あらためてOracle提供のJDKを語る
byオラクルエンジニア通信
 
PDF
CPUから見たG1GC
byKenji Kazumura
 
PPT
Java Persistence API (JPA) Step By Step
byGuo Albert
 
PDF
Java Deserialization Vulnerabilities - The Forgotten Bug Class
byCODE WHITE GmbH
 
PDF
Pentesting GraphQL Applications
byNeelu Tripathy
 
PDF
認証の課題とID連携の実装 〜ハンズオン〜
byMasaru Kurahayashi
 
PPTX
OAuth2 + API Security
byAmila Paranawithana
 
PDF
Spring Data JPA
byCheng Ta Yeh
 
PPTX
XSS - Do you know EVERYTHING?
byYurii Bilyk
 
Modern API Security with JSON Web Tokens
byJonathan LeBlanc
 
Json Web Token - JWT
byPrashant Walke
 
Web API authentication and authorization
byChalermpon Areepong
 
An Overview of Deserialization Vulnerabilities in the Java Virtual Machine (J...
byjoaomatosf_
 
Intro to OAuth2 and OpenID Connect
byLiamWadman
 
Modern Security with OAuth 2.0 and JWT and Spring by Dmitry Buzdin
byJava User Group Latvia
 
Using JSON Web Tokens for REST Authentication
byMediacurrent
 
Async js
byAlexandr Skachkov
 
Applications secure by default
bySecuRing
 
Spring Security 5
byJesus Perez Franco
 
개발자를 위한 (블로그) 글쓰기 intro
bySeongyun Byeon
 
Oracle jdk 20190827 - 今、あらためてOracle提供のJDKを語る
byオラクルエンジニア通信
 
CPUから見たG1GC
byKenji Kazumura
 
Java Persistence API (JPA) Step By Step
byGuo Albert
 
Java Deserialization Vulnerabilities - The Forgotten Bug Class
byCODE WHITE GmbH
 
Pentesting GraphQL Applications
byNeelu Tripathy
 
認証の課題とID連携の実装 〜ハンズオン〜
byMasaru Kurahayashi
 
OAuth2 + API Security
byAmila Paranawithana
 
Spring Data JPA
byCheng Ta Yeh
 
XSS - Do you know EVERYTHING?
byYurii Bilyk
 

Similar to Pentesting jwt

PPTX
3783daf0-8a4d-45ad-a2f3-2a787053f90e.pptx
byNicoleFalcao1
 
PDF
The Hacker's Guide to JWT Security
byPatrycja Wegrzynowicz
 
PPTX
jwt.pptx
byMaleerat Maliyaem
 
PPTX
JWT_Presentation to show how jwt is better then session based authorization
bynathakash343
 
PDF
Landscape
byAmit Gupta
 
PDF
Landscape
byAmit Gupta
 
PDF
Jwt with flask slide deck - alan swenson
byJeffrey Clark
 
PDF
PHP Experience 2016 - [Palestra] Json Web Token (JWT)
byiMasters
 
PDF
5 easy steps to understanding json web tokens (jwt)
byAmit Gupta
 
PDF
Jwt == insecurity?
bysnyff
 
PDF
JWT stands for JSON Web Token. It's a compact, URL-safe means of representing...
byVarun Mithran
 
PDF
The Hacker's Guide to JWT Security
byPatrycja Wegrzynowicz
 
PDF
JSON Web Tokens Will Improve Your Life
byJohn Anderson
 
PDF
Autenticação com Json Web Token (JWT)
byIvan Rosolen
 
PDF
Don't Loose Sleep - Secure Your Rest - php[tek] 2017
byAdam Englander
 
PDF
Jwt, wtf? - Phil Nash - Codemotion Amsterdam 2017
byCodemotion
 
PPTX
bbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbb
bySohailCreation
 
PDF
PHP UK 2017 - Don't Lose Sleep - Secure Your REST
byAdam Englander
 
PDF
Json web token api authorization
byGiulio De Donato
 
PPTX
JsonWebTokens ppt - explains JWT, JWS , JWE Tokens
bynagarajapallafl
 
3783daf0-8a4d-45ad-a2f3-2a787053f90e.pptx
byNicoleFalcao1
 
The Hacker's Guide to JWT Security
byPatrycja Wegrzynowicz
 
jwt.pptx
byMaleerat Maliyaem
 
JWT_Presentation to show how jwt is better then session based authorization
bynathakash343
 
Landscape
byAmit Gupta
 
Landscape
byAmit Gupta
 
Jwt with flask slide deck - alan swenson
byJeffrey Clark
 
PHP Experience 2016 - [Palestra] Json Web Token (JWT)
byiMasters
 
5 easy steps to understanding json web tokens (jwt)
byAmit Gupta
 
Jwt == insecurity?
bysnyff
 
JWT stands for JSON Web Token. It's a compact, URL-safe means of representing...
byVarun Mithran
 
The Hacker's Guide to JWT Security
byPatrycja Wegrzynowicz
 
JSON Web Tokens Will Improve Your Life
byJohn Anderson
 
Autenticação com Json Web Token (JWT)
byIvan Rosolen
 
Don't Loose Sleep - Secure Your Rest - php[tek] 2017
byAdam Englander
 
Jwt, wtf? - Phil Nash - Codemotion Amsterdam 2017
byCodemotion
 
bbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbb
bySohailCreation
 
PHP UK 2017 - Don't Lose Sleep - Secure Your REST
byAdam Englander
 
Json web token api authorization
byGiulio De Donato
 
JsonWebTokens ppt - explains JWT, JWS , JWE Tokens
bynagarajapallafl
 

Recently uploaded

PDF
LogiNext Media Kit & Company Overview 2025
byswatishahz9031
 
PDF
Figma systems development services
bydavidjohansen1597
 
PDF
LogiNext Media Kit & Company Overview 2025
bysmritipatil055
 
PDF
谷歌留痕技术教程[ 𝙩𝙤𝙥 𝟮𝟯𝟯. 𝙘 𝙤𝙢 ]
by6stynggfo
 
PPTX
Marketo API Deep Dive From Basics to AI-Ready Foundations - January 2026.pptx
bybbedford2
 
PDF
LogiNext Media Kit & Company Overview 2025
bynidhisharmaq7184
 
DOCX
The Rise of Headless CMS in Modern Web Development.docx
bywork4noahmiller
 
PDF
How to find your event photos instantly with a selfie using SnapSeek
bySnapSeek.app
 
PDF
GDG ON CAMPUS NETAJI SUBHASH ENGINEERING COLLEGE BUILDING INTELLIGENT WEB APP...
bydscnsecorg
 
PDF
Physiotherapist App Development for Modern Rehabilitation
byV3CUBE TECHNOLABS
 
PDF
SLIDE PROPARTNER SUMMIT 2025 - ITALY.pdf
bygiuo
 
PDF
Pet Care Service App Development Company
byV3CUBE TECHNOLABS
 
PDF
Accelerating Data Validation with QuerySurge AI
byRTTS
 
PDF
Smart ways to se AI in your business , presentation
byAI n Dot Net
 
PDF
Manual Testing Still Matters: 7 Areas Where Humans Beat Automation
byKiwiQA Services
 
PDF
Visualizing Your Data Lake with Grafana - Amsterdam
byImma Valls Bernaus
 
PDF
LogiNext Media Kit & Company Overview 2025
bypriyajoshi2929
 
PDF
Water Delivery App Development Solutions.pdf
byeSiteWorld TechnoLabs Pvt. Ltd.
 
PDF
Introducing MySQL HeatWave Migration Assistant
byAlexander Hitrov
 
PDF
ChampionMATES – Compete With Friends. Predict Sports. Become the Champion.
byRafal Ksiazek
 
LogiNext Media Kit & Company Overview 2025
byswatishahz9031
 
Figma systems development services
bydavidjohansen1597
 
LogiNext Media Kit & Company Overview 2025
bysmritipatil055
 
谷歌留痕技术教程[ 𝙩𝙤𝙥 𝟮𝟯𝟯. 𝙘 𝙤𝙢 ]
by6stynggfo
 
Marketo API Deep Dive From Basics to AI-Ready Foundations - January 2026.pptx
bybbedford2
 
LogiNext Media Kit & Company Overview 2025
bynidhisharmaq7184
 
The Rise of Headless CMS in Modern Web Development.docx
bywork4noahmiller
 
How to find your event photos instantly with a selfie using SnapSeek
bySnapSeek.app
 
GDG ON CAMPUS NETAJI SUBHASH ENGINEERING COLLEGE BUILDING INTELLIGENT WEB APP...
bydscnsecorg
 
Physiotherapist App Development for Modern Rehabilitation
byV3CUBE TECHNOLABS
 
SLIDE PROPARTNER SUMMIT 2025 - ITALY.pdf
bygiuo
 
Pet Care Service App Development Company
byV3CUBE TECHNOLABS
 
Accelerating Data Validation with QuerySurge AI
byRTTS
 
Smart ways to se AI in your business , presentation
byAI n Dot Net
 
Manual Testing Still Matters: 7 Areas Where Humans Beat Automation
byKiwiQA Services
 
Visualizing Your Data Lake with Grafana - Amsterdam
byImma Valls Bernaus
 
LogiNext Media Kit & Company Overview 2025
bypriyajoshi2929
 
Water Delivery App Development Solutions.pdf
byeSiteWorld TechnoLabs Pvt. Ltd.
 
Introducing MySQL HeatWave Migration Assistant
byAlexander Hitrov
 
ChampionMATES – Compete With Friends. Predict Sports. Become the Champion.
byRafal Ksiazek
 

Pentesting jwt

  • 1.
    { Pentesting JWT By JayaKumar Kondapalli
  • 2.
    WhoAM I? Just aSecurity Enthusiast Was Functional tester by chance.. Now, Penetration tester by choice.. I feel Shy talking about myself
  • 3.
    History behind JWT? Whatis JWT and it’s structure? Security concerns with JWT Recommendations Agenda
  • 4.
    Have you everseen data like this?? eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3ODkwIi wibmFtZSI6IkpvaG4gRG9lIiwiaWF0IjoxNTE2MjM5MDIyfQ.SflKxwRJSMeKKF 2QT4fwpMeJf36POk6yJV_adQssw5c Have you observed any pattern in the above value??
  • 5.
    Let’s go backto History: HTTP is Stateless Select queryPost /login User=Jay&pass=xyz 200 Ok Set-cookie:Name=Jay Found Jay Browser Server GET /profile Cookie:name=Jay /profile Hi Jay
  • 6.
    Select query Post /login User=Jay&&pass=xy 200Ok Set-cookie:sessionid=6swe.. Set id=6swe…[] Get /homepage Cookie:sessionid=6swe… Browser Server Storage where reference s 200 ok response Found Jay Id=6swe ..
  • 7.
    Is there anyalternative approach instead of storing user’s state at server side?? Statelessness which is more preferable for API’s authentication where Authentication can be done by one server(Authentication server) and resource can be retrieved by another server(resource server) Example: Any single sign on implementation
  • 8.
    Select query Post /login User=Jay&&pass=xyz 200Ok Set-cookie: eyr…[] Get /homepage Cookie: eyr…[] Write + Sign Verify + Read 200 ok response
  • 9.
    A JSON WebToken (JWT) is a JSON object that is defined in RFC 7519 as a safe way to exchange set of information between two parties. The token is composed of a header, a payload, and a signature. What it JWT??
  • 10.
    Structure of JWT?? BothHeader and payload are base64 encoded values not encrypted Values.. So anyone can decode header and payload values..
  • 11.
    { "alg": "HS256", "typ": "JWT" } Inshort header says what algorithm is being used to create signature Header : Header part contains Meta Data
  • 12.
    Claims: { "iss": "Identifier ofour Authentication Server", "iat": 1504699136, "sub": "github|353454354354353453", "exp": 1504699256 } Payload: Actual data to be exchanged between two parties
  • 13.
    • aud (audience):Recipient for which the JWT is intended • iss (issuer): Issuer of the JWT • sub (subject): Subject of the JWT (the user) • exp (expiration time): Time after which the JWT expires • nbf (not before time): Time before which the JWT must not be accepted for processing • iat (issued at time): Time at which the JWT was issued; can be used to determine age of the JWT • jti (JWT ID): Unique identifier; can be used to prevent the JWT from being replayed (allows a token to be used only once) More Claims..
  • 14.
    HMACSHA256( base64UrlEncode(header) + "." +base64UrlEncode(payload), secret) Signature : This part handles integrity
  • 15.
  • 16.
    Now, the importantquestion what are the security concerns with JWT..??
  • 17.
    eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3 ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwic3NuIjoiNzg5MTIzNDU2Ny IsImRvYiI6IjE1LTA4LTE5OTgiLCJpYXQiOjE1MTYyMzkwMjJ9.tEN 6j4ZeHfeU9HdcpRD9ecF37Xr48CTwxqBBYWRfAwg Since header andpayload are base64 encoded, anyone can decode it to view data. If we decode above token, you can view sensitive data Information Leakage Two mitigate this issue, JWT token has to be implemented in JWE format
  • 18.
    JWT is classifiedbased on JOSE JWT can be implemented in Two ways 1. JWS (JSON web Signature ) 2. JWE (JSON web Encryption) To mitigate information leakage vulnerability one has to implement JWE
  • 19.
    Decode header valueand change ‘alg’ value as ‘none’ and encode it again. Since we are changing algorithm as none, no need to have signature value.. Let’s try.. Demo time: http://demo.sjoerdlangkemper.nl/jwtdemo/hs256.php Check if JWT supports ‘NONE’ as algorithm
  • 20.
    Symmetric Algorithm(Single key concept) Asymmetricalgorithm (Public key and private key concept) What are the cryptography algorithms can be used to create signature
  • 21.
    What could bepossible hacks?? Bruteforcing is possible Demo time with jwt.io In case of symmetric algorithm key strength of secret is very crucial. If it weak, it can be easily brute forcible using any brute forcing tools like (John the ripper..) What if Symmetric alg used?
  • 22.
    Demo with RS256 Whatif Asymmetric alg used? What if I convert alg value from ‘RS256’ to ‘HS256’ and What if I consider public key as secret to create a signature??
  • 23.
     Question ishow to get Public key..!!  openssl s_client -connect zonksec.com:443 | openssl x509 -pubkey -noout  Get with the help if android application exists Conti..
  • 24.
    Possibility of authorizationbypass exists if developer’s appends payload parameters into URL parameters.. Eg: Employee id parameter in both JWT token and as URL parameter GET /Empinfo?employeid=544123 Host: xyz.com Authorization:eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0 NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwic3NuIjoiOTIzNDQ1Njc5IiwiZ W1wbG95ZWlkIjoiNTQ0MTIzIiwiaWF0IjoxNTE2MjM5MDAyMn0.lLX7hN kRJzZsk_4xuzmPZwStfVe8s20caJEOqpBcrlA Note: This scenario mayn’t come into JWT’s security bucket but possibility of security threat is there if developers transmits parameters values in both as part of JWT and as part of URL parameters Authorization Bypass
  • 25.
    Jsonwebtokens extension Json-webtokenattacker extensionfor checking RSA Burp Automation Support
  • 26.
     Recommended touse Asymmetric algorithm to create signature. Incase of symmetric algorithm key has to be shared with resource server(if multiple resource server’s exists it would be a problem..!!)  Use an appropriate Key size  Don’t pass sensitive data as part of JWT  Always verify ‘alg’ value at server side such that it should not contains ‘none’ as value for ‘alg’ field Recommendations
  • 27.
     https://www.sjoerdlangkemper.nl/2016/09/28/attacking-jwt- authentication/  https://github.com/hashcat/hashcat/issues/1057 https://www.nccgroup.trust/uk/about-us/newsroom-and- events/blogs/2019/january/jwt-attack-walk-through/ References:
  • 28.
  • 29.