Example Usage
$ myjwt --help
Usage: myjwt [OPTIONS] JWT

  This cli is for pentesters, CTF players, or dev.
  You can modify your jwt, sign, inject ,etc...
  Full documentation is at http://myjwt.readthedocs.io.
  If you see problems or enhancement send an issue.I will respond as soon as possible.
  Enjoy :)
  All new jwt will be copy to the clipboard.

Options:
  --version                    Show the version and exit.
  --full-payload TEXT          New payload for your jwt.Json format Required.
  -h, --add-header TEXT        Add a new key, value to your jwt header, if key
                               is present old value will be replaced.Format:
                               key=value.

  -p, --add-payload TEXT       Add a new key, value to your jwt payload, if
                               key is present old value will be
                               replaced.Format: key=value.

  --sign TEXT                  Sign Your jwt with key given.
  --verify TEXT                verify your key.
  -none, --none-vulnerability  Check None Alg vulnerability.
  --hmac PATH                  Check RS/HMAC Alg vulnerability.
  --bruteforce PATH            Bruteforce to guess the secret used to sign the
See also
JWT_Tool
Open Source

Toolkit for testing, tampering, and forging JSON Web Tokens. Tests common JWT vulnerabilities includ…
Burp Suite Extensions (BApp Store)
Freemium

Marketplace of extensions for Burp Suite covering active/passive scanning, custom insertion points, …
Aquatone
Open Source

Tool for visual inspection of websites across large numbers of hosts. Takes screenshots of web pages…
OWASP ZAP
Open Source Kali

OWASP's Zed Attack Proxy — one of the world's most popular free web application security scanners. F…
aaWAF
Open Source

Joomscan
Open Source Kali

OWASP Joomla vulnerability scanner. Detects Joomla version, components, modules, and templates with …