{% extends "base.html" %} {% block title %}{{ site.title }} - A JWT Security Testing Toolkit{% endblock %} {% block body %}
{{ page.extra.hero_badge }}

{{ page.extra.hero_title }}

{{ page.extra.hero_description }}

$ jwt-hack decode eyJhbGciOiJIUzI1...
# Decode and analyze JWT tokens

$ jwt-hack crack -w wordlist.txt <TOKEN>
# Crack JWT secrets with dictionary attacks

$ jwt-hack scan <TOKEN>
# Scan for JWT vulnerabilities

{{ page.extra.features_title }}

{{ page.extra.features_description }}

JWT/JWE Encoding & Decoding

Encode and decode JWT and JWE tokens with support for multiple algorithms, custom headers, and DEFLATE compression.

Signature Verification

Verify JWT signatures using secrets or keys for symmetric and asymmetric algorithms with expiration validation.

Advanced Cracking

Crack JWT secrets using dictionary attacks or brute force methods with support for compressed tokens.

Attack Payload Generation

Generate various JWT attack payloads including none algorithm, algorithm confusion, and header manipulation attacks.

High Performance

Built with Rust for maximum speed and efficiency, leveraging parallel processing for intensive operations.

MCP Server Support

Integrates with AI models via Model Context Protocol for intelligent JWT analysis and testing.

{{ page.extra.cta_title }}

{{ page.extra.cta_description }}

{{ page.extra.cta_button_text }}
{% endblock %}