jwt_tool icon indicating copy to clipboard operation
jwt_tool copied to clipboard

Published 20 hours ago verified publisher icon ticarpi

[Feature request] Reconstruct RSA keys from signatures, to aid with key-confusion attacks

Open the-useless-one opened this issue 4 years ago • 1 comments

Hi!

@silentsignal recently published an article on how to reconstruct RSA keys from RSA signatures, and how it can be useful with key-confusion attacks on JWT.

They published rsa_sign2n, which can be used to recreate RSA keys from JWTs. It would be useful to have this attack implemented in jwt_tool.

Thank you for this tool, and for the very detailed wiki!

the-useless-one avatar Feb 09 '21 16:02 the-useless-one

I have this working in beta currently, and it works on keys with common configurations. I'm cleaning it up to make it work against more keys, and to integrate better with the rest of the tool. Should be pushing to live soon.

ticarpi avatar Mar 30 '21 14:03 ticarpi