JWT Auditor MCP Server

jwt_bruteforce

Discover vulnerabilities in HS256/HS384/HS512 JWTs by bruteforcing the secret using a common or custom wordlist, enabling secure JWT validation.

Instructions

Bruteforce the secret for HS256/HS384/HS512 JWTs using a common wordlist or a custom one.

Input Schema

Name	Required	Description	Default
`token`	Yes
`wordlist`	No

Input Schema (JSON Schema)

{
  "properties": {
    "token": {
      "title": "Token",
      "type": "string"
    },
    "wordlist": {
      "anyOf": [
        {
          "items": {},
          "type": "array"
        },
        {
          "type": "null"
        }
      ],
      "default": null,
      "title": "Wordlist"
    }
  },
  "required": [
    "token"
  ],
  "title": "jwt_bruteforceArguments",
  "type": "object"
}

This server cannot be installed

Other Tools from JWT Auditor MCP Server

Related Tools

jwt_analyze
@mohdhaji87/JWTAuditorMCP
jwt_vulnerability_check
@ricauts/CyberMCP
jwt-decode
@wrenchpilot/it-tools-mcp
verify_jwt_secret
@HenkDz/selfhosted-supabase-mcp
jwt_decode
@mohdhaji87/JWTAuditorMCP
verify_jwt_secret
@abushadab/selfhosted-supabase-mcp-basic-auth

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/mohdhaji87/JWTAuditorMCP'

If you have feedback or need assistance with the MCP directory API, please join our Discord server