JSON Web Token None Algorithm

Bookmarked!

This exercise covers the exploitation of a signature weakness in a JWT library.

PRO Easy < 1 Hr. 10224 White Badge

Course

This lab explores the exploitation of a vulnerability in JSON Web Token (JWT) used for authentication. By tampering with the token, you can gain administrative access to an application.

Skills covered

Authentication Authorisation Cryptography

Topics

JWT

CWE-345,CWE-347

Included with PRO

Full course content 2 videos Takeaways Common mistakes

Ready to practice?

Get access to this lab and 600+ hands-on exercises with a PRO subscription.

Go PRO or create a free account