(#14) show more information in decode mode

hahwul · Oct 24, 2020 · 95df53d · 95df53d
1 parent b8569ca
commit 95df53d
Show file tree

Hide file tree

Showing 2 changed files with 35 additions and 2 deletions.
diff --git a/cmd/decode.go b/cmd/decode.go
@@ -3,6 +3,8 @@ package cmd
 import (
 	"fmt"
 	"os"
+	"time"
+	"strconv"
 	"encoding/json"
 
 	"github.com/dgrijalva/jwt-go"
@@ -21,14 +23,40 @@ var decodeCmd = &cobra.Command{
 		if len(args) >= 1 {
 			var token *jwt.Token
 			var log = logrus.New()
+			var jdata map[string]interface{}
+
 			log.Out = os.Stdout
 			token = jwtInterface.JWTdecode(args[0])
 			header,_ := json.Marshal(token.Header)
 			log.WithFields(logrus.Fields{
 				"method": token.Method,
 				"header": string(header),
 			}).Info("Decoded data(claims)")
+
 			data,_ := json.Marshal(token.Claims)
+			json.Unmarshal([]byte(data),&jdata)
+
+
+			if jdata["iat"] != nil {
+				iatf := jdata["iat"].(float64)
+				iats := fmt.Sprintf("%.0f",iatf)
+				iat,_ := strconv.Atoi(iats)
+				iatt := time.Unix(0,int64(iat))
+				log.WithFields(logrus.Fields{
+					"IAT": iats,
+					"TIME": iatt,
+				}).Info("Issued At Time")
+			}
+			if jdata["exp"] != nil {
+				expf := jdata["exp"].(float64)
+				exps := fmt.Sprintf("%.0f",expf)
+				exp,_ := strconv.Atoi(exps)
+				expt := time.Unix(0,int64(exp))
+				log.WithFields(logrus.Fields{
+					"EXP": exps,
+					"TIME": expt,
+				}).Info("Expiraton Time")
+			}
 			fmt.Println(string(data))
 		} else {
 			var log = logrus.New()

diff --git a/pkg/crack/crack.go b/pkg/crack/crack.go
@@ -7,6 +7,7 @@ import (
 
 	jwtInterface "github.com/hahwul/jwt-hack/pkg/jwt"
 	"github.com/sirupsen/logrus"
+	color "github.com/logrusorgru/aurora"
 )
 
 var log = logrus.New()
@@ -37,6 +38,7 @@ func Crack(mode, token, data string, concurrency, max int, power bool) {
 func RunTestingJWT(token string, lists []string, concurrency int) {
 	wordlists := make(chan string)
 	found := false
+	secret := ""
 	// Add go routine job
 	var wg sync.WaitGroup
 	for i := 0; i < concurrency; i++ {
@@ -51,9 +53,9 @@ func RunTestingJWT(token string, lists []string, concurrency int) {
 						log.WithFields(logrus.Fields{
 							"Signature":   "Verified",
 							"Word":   word,
-						}).Info("Found! This JWT Token signature secret is.. ")
-						fmt.Println(word)
+						}).Info("Found! Token signature secret is "+word)
 						found = true
+						secret = word
 
 					} else {
 						log.WithFields(logrus.Fields{
@@ -73,5 +75,8 @@ func RunTestingJWT(token string, lists []string, concurrency int) {
 
 	close(wordlists)
 	wg.Wait()
+	if found {
+		fmt.Println("[+] Found! JWT signature secret:",color.BrightYellow(secret))
+	}
 	fmt.Println("[+] Finish crack mode")
 }