JWT Workbench
← All work

Inspect any JWT, offline.

Paste a token — see every claim, every signature, and the security issues an attacker would find first. Nothing leaves your browser.

● Offline No network Web Crypto HS256 · HS384 · HS512 · none
Paste JWT
Header
paste a token to decode
Payload
paste a token to decode
Signature
paste a token to decode

Security analysis

·
Awaiting token
Paste a JWT above. The analysis runs offline — no token leaves this page.

Verify signature (HS256/384/512)

Enter a secret to verify the HMAC signature in-browser via Web Crypto.
JWT Workbench · offline · zero telemetry · case study
built by fadaly.net