JSON Web Token Penetration Testing on Cookie Storage with CSRF Techniques

An authentication process is an act of proving the identity of a user when entering a system. Token-based authentication is a type of authentication that is stateless. This means that when the authentication process is carried out, there is absolutely no information about the user because the use of tokens in every request is made from the client to the server. Java Script Object Notation (JSON) Web Token is an authentication technique that provides an open and secure way to represent claims between two parties, cryptographically signed, which is designed not to be forged. However, this needs to be proven safe and not vulnerable. The purpose of this study is to conduct penetration testing of the security of JSON Web Token (JWT) storage on cookie storage using CSRF techniques. Scenarios for performing the CSRF technique were prepared in the experiment. The system architecture and tools to be used are prepared before the experiment is carried out. The experimental results in this study show that the part of the cookie attribute that embeds the flag “set-httponly: false”, can be accessed by javascript on the client-side (read and write). The CSRF technique that was tried in the research has succeeded in utilizing JWT tokens stored in cookies to send faked requests. Eventually, the victim’s account was used, and the resource was taken over.