JWT Auditor MCP Server

jwt_bruteforce

Crack HS256/HS384/HS512 JWT secrets using wordlists to identify vulnerabilities in token security. Supports custom wordlist inputs for targeted testing.

Instructions

Bruteforce the secret for HS256/HS384/HS512 JWTs using a common wordlist or a custom one.

Input Schema

Name	Required	Description	Default
`token`	Yes
`wordlist`	No

Input Schema (JSON Schema)

{
  "properties": {
    "token": {
      "title": "Token",
      "type": "string"
    },
    "wordlist": {
      "anyOf": [
        {
          "items": {},
          "type": "array"
        },
        {
          "type": "null"
        }
      ],
      "default": null,
      "title": "Wordlist"
    }
  },
  "required": [
    "token"
  ],
  "title": "jwt_bruteforceArguments",
  "type": "object"
}

Install Server

HTTP connection URL

Other Tools from JWT Auditor MCP Server

Related Tools

jwt_analyze
@mohdhaji87/JWTAuditorMCP
jwt-decode
@wrenchpilot/it-tools-mcp
jwt_vulnerability_check
@ricauts/CyberMCP
jwt_decode
@mohdhaji87/JWTAuditorMCP
hash-sha512
@wrenchpilot/it-tools-mcp
jwt_generate
@mohdhaji87/JWTAuditorMCP

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/mohdhaji87/JWTAuditorMCP'

If you have feedback or need assistance with the MCP directory API, please join our Discord server