What is a .JWT file?
A JWT (JSON Web Token) carries signed identity claims, widely used to log in to web APIs.
- Did you know
- The JWT standard was published as RFC 7519 in 2015 and is now a default for stateless web logins.
- A JWT has three Base64url-encoded parts - header, payload and signature - joined by full stops, so it travels safely in URLs and headers.
- The signature lets a server verify a JWT has not been tampered with, without having to store any session state of its own.
- What Analyser reads
- Identify and read metadata from developer and data files: JWT tokens (header + claims + expiry), WebAssembly, Java class files, NumPy/Safetensors/GGUF model files, source maps, SQL dumps, Visual Studio/.NET projects, Terraform, Protobuf, GraphQL, SARIF, Python bytecode, and Apple property lists (XML + binary). Jupyter notebooks (IPYNB) and HAR captures now open in a full viewer - see Notebooks & data above.
- Depth of analysis
- .JWT is an identification-grade format: Analyser recognises it from its bytes and decodes the header metadata it carries, rather than opening it in a full viewer. Formats that do get a full viewer are marked "Full" on the formats page.
- Open a .JWT file
- Drag a .JWT file onto the Analyser home page (or tap to pick one). It is identified entirely in your browser - nothing is uploaded, there is no account, and it works offline once installed.