JWT Tool on offsec.tools

JWT Tool

A toolkit for testing, tweaking and cracking JSON Web Tokens.

jwt_tool.py is a toolkit for validating, forging, scanning and tampering JWTs (JSON Web Tokens).
This tool is written for pentesters, who need to check the strength of the tokens in use, and their susceptibility to known attacks. A range of tampering, signing and verifying options are available to help delve deeper into the potential weaknesses present in some JWT libraries.