GitBook: [#3333] No subject
This commit is contained in:
parent
3506ce5828
commit
7d989441f5
@ -30,7 +30,9 @@ Get the [**official PEASS & HackTricks swag**](https://peass.creator-spring.com)
|
||||
Run [**jwt\_tool**](https://github.com/ticarpi/jwt\_tool) with mode `All Tests!` and wait for green lines
|
||||
|
||||
```bash
|
||||
python3 jwt_tool.py -M at -t "https://api.example.com/api/v1/user/76bab5dd-9307-ab04-8123-fda81234245" -rh "Authorization: Bearer eyJhbG...<JWT Token>"
|
||||
python3 jwt_tool.py -M at \
|
||||
-t "https://api.example.com/api/v1/user/76bab5dd-9307-ab04-8123-fda81234245" \
|
||||
-rh "Authorization: Bearer eyJhbG...<JWT Token>"
|
||||
```
|
||||
|
||||
If you are lucky the tool will find some case where the web application is correctly checking the JWT:
|
||||
|
Loading…
Reference in New Issue
Block a user