Login
Register
Introduction 00 (next)
Course
Videos
Scoring
Introduction Badge
JSON Web Token
Course
Videos
Scoring
Files
White Badge
Introduction Badge (next)
Badges
Introduction
0 / 4
Unix
0 / 35
Essential
0 / 60
PCAP badge
0 / 35
HTTP
0 / 43
White
0 / 6
Serialize
0 / 5
Yellow
0 / 7
Blue
0 / 11
Green
0 / 16
Orange
0 / 15
Intercept
0 / 5
Authentication / Authorization
0 / 21
Android
0 / 8
Capture-The-Flag
0 / 6
Brown
0 / 26
Recon
0 / 27
API
0 / 19
Media
0 / 18
Code Review
0 / 107
Java Serialize
0 / 12
Java Code Review
0 / 53
Login
Register
Solving JSON Web Token
This exercise covers the exploitation of a signature weakness in a JWT library.
Back to White Badge
PTLAB
PRO
Tier
PTLAB
Easy
PTLAB
< 1 Hr.
PTLAB
9151
PTLAB
White Badge
Common Mistakes:
The case of the algorithm matters: None and none are not handled in the same way
Key Takeaways:
Encoding and decoding of a JWT Token
Ability to test for the None algorithm
Online access to this exercise is only available with
PentesterLab PRO
Learn more about PentesterLab PRO