all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

JWT [JSON WEB TOKENS] [ ALGORITHM CONFUSION ATTACK] (0x03)

Add to bookmarks
April 10, 2023, 9:29 a.m. | Hashar Mujahid

InfoSec Write-ups - Medium infosecwriteups.com

Hi! My name is Hashar Mujahid. I am a security researcher and a penetration tester. This blog is part 3 of the comprehensive exploitation of JSON web tokens. I recommend you read the first part and 2nd of this series as well.

HEADER

Part 1:

JWT [JSON WEB TOKENS] [EXPLANATION & EXPLOITATION] (0x01)

Part 2:

JWT [JSON WEB TOKENS] [EXPLANATION & EXPLOITATION] (0x02)

In the previous series of JSON web tokens, we discuss all the attack possibilities. Let's now discuss …

algorithm attack bug bounty cybersecurity json jwt jwt token penetration testing tokens web

Visit resource

More from infosecwriteups.com / InfoSec Write-ups - Medium

JNDI Injection — The Complete Story 1 week ago | infosecwriteups.com
bug bounty java jndi pentesting +1
Hundreds of companies’ internal data exposed — Part 2: The FreshService misconfiguration 1 week, 1 day ago | infosecwriteups.com
bug bounty ethical hacking hacking security +1
HacktheBox Starting Point: Explosion Walkthrough 1 week, 1 day ago | infosecwriteups.com
cybersecurity hacking hackthebox rdp
5 Ways I Can Find Your Deleted Files as An Ethical Hacker! 1 week, 2 days ago | infosecwriteups.com
anonymity computer forensics cybersecurity file-recovery +1
For Business Reasons | TryHackMe Write-Up 1 week, 2 days ago | infosecwriteups.com
ctf-writeup pivoting tryhackme-walkthrough tryhackme-writeup +1
BSQL Injection Shenanigans 1 week, 2 days ago | infosecwriteups.com
academy access back blind +13
Bypassing UAC 1 week, 2 days ago | infosecwriteups.com
account administrator bypass bypassing +15
My LLM Bug Bounty Journey on Hugging Face Hub via Protect AI 1 week, 2 days ago | infosecwriteups.com
ai security black hat bounty bug +11
Hacking into 30+ tesla cars around the world using a third party software 1 week, 2 days ago | infosecwriteups.com
automobile-industry security tesla-motors

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

Sr. Product Manager

@ MixMode | Remote, US
View on infosec-jobs.com

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada
View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA
View on infosec-jobs.com

Security Analysis Senior Specialist

@ NTT DATA | singapore, 01, SG
View on infosec-jobs.com

Information Assurance Analyst - Security Architecture / Vulnerability Management

@ Hawaiian Electric | Honolulu, Hawaii (HI), US, 96840
View on infosec-jobs.com