JSON Web Token Attacks: LAB #5 By PortSwigger - JWT Authentication Bypass Via JKU Header Injection

#portswigger #websecurity #JSON #solution
Walkthrough videos regarding the solutions of the lab "JWT Authentication Bypass Via Unverified Signature" of "JWT Attacks" section of Web Security Academy made by PortSwigger.
In particular, intercepting the request and hacking the JSON Web Token with a proxy, in this case Burp Suite Professional or BurpSuite Community Edition, you will be able to access the user administrator.

Actually, I'm doing the Web Security Academy made by PortSwigger.
In these type of videos, I will focus on some labs.
This is one of various type of these kinds of videos.
Enjoy, and please leave a like and subscribe.

About Me:
- Bachelor's Degree in Computer Engineering at Università Degli Studi Roma Tre
- Burp Suite Certified Practitioner (BSCP)
- eLearnSecurity Web Application Application Tester (eWPT)
- eLearnSecurity Web Application Application Tester eXtreme (eWPTx)
- Red Hat Certified System Administrator (RHCSA)

Social networks:

If you liked content, subscribed to my channel:

Disclaimer: Hacking without permission is illegal. This channel is strictly educational for learning about cyber-security in the areas of ethical hacking and penetration testing so that we can protect ourselves against the real hackers.