A tool to test security of json web token

Node JS , Typescript , Express based reactive microservice starter project for REST and GraphQL APIs

OWASP PTK - application security browser extension.

JWTLens - Burp Suite extension for automated JWT security testing. 62 checks: passive scanning, algorithm confusion, signature bypass, KID injection, weak secret brute force, and a built-in JWT Forge tab. Works automatically as you browse.

Spring boot with JWT security and refresh token.

Implementing JWT security based using Spring boot

A comprehensive Food Delivery System built with Spring Boot providing RESTful APIs for managing restaurants, menu items, orders, and users. Features JWT authentication, role-based authorization, order tracking, and complete restaurant management capabilities.

🔭 JWTelescope is an advanced CLI tool for decoding, inspecting, and performing security analysis on JSON Web Tokens (JWTs). It is designed for bug bounty hunters, pentesters, and developers who want fast insight into JWT structure, claims, and common misconfigurations.

A browser-based JWT security toolkit that decodes, audits, brute-forces weak secrets, forges tampered tokens, and simulates real-world attacks — with instant Python/PyJWT fix code generation.

A .NET CLI tool that performs static analysis on C# source code to detect insecure or misconfigured JWT authentication patterns.

A high-scale, task management ecosystem built with Spring Boot 4.0.2 and Java 25. Features a trustless JWT security model, cross-service orchestration via OpenFeign, and high availability through Resilience4j and Eureka service discover

This project demonstrates production-ready JWT security with Spring Security 6, role-based access control, token revocation, and comprehensive API documentation. Includes H2 database, password encryption, and protected endpoints with full logout functionality.

JWT Analyzer is a C# CLI tool that reads, scans, and edits JSON Web Tokens for security analysis. It helps identify common JWT misconfigurations, decode claims, and modify tokens for testing purposes. Designed as an early-stage project for educational and authorized security testing.

🔍 Analyze and edit JSON Web Tokens with JwtAnalyzer, a C# CLI tool for security assessments and educational purposes.

Web API Core libraries used to simplify the development of .NET APIs.

JWT Security Analyzer is a security-focused web application built with FastAPI that inspects JSON Web Tokens, detects common misconfigurations and vulnerabilities, and provides a structured security report with a calculated risk score.

A simple jwt project created with kotlin, spring boot 2 and docker

A command line tool to generate different keypair and certificate in pure go(WIP).

📊 Talent & Review Management System es una plataforma robusta, diseñada para la gestión integral del desempeño y desarrollo del talento humano. Centraliza ciclos de evaluación, objetivos y el seguimiento de habilidades. Asegura la integridad con JWT Security, gestión de roles y auditoría detallada.

Detect and test JSON Web Tokens for security flaws with automated checks in Burp Suite extensions, including token analysis and active exploitation.

JWTScout is an offensive security CLI tool designed to analyze, audit, and exploit JSON Web Token (JWT) vulnerabilities including alg:none, weak secrets, key confusion, and claim manipulation.

JWT authentication security lab demonstrating token forgery, privilege escalation, and secure validation using FastAPI.