Skills
.Work. You
Rest

atest

Community

Lightweight API pentest workflow with 4 phases.

Software Engineering#automation#security#api#graphql#pentest#idor#bola
Authorn4igme
Version1.0.0
Installs0

System Documentation

What problem does it solve?

Lightweight API penetration testing framework for REST, GraphQL, and gRPC targets. It enables rapid, phase-driven security assessments without requiring full infrastructure setup.

Core Features & Use Cases

  • 4-phase workflow: Scope & Recon, AuthN/AuthZ, Injection & Logic, Reporting.
  • Phase-driven tooling: token management, BOLA/IDOR testing, and PoC generation across phases.
  • Scripted helpers and references: integrates with state_manager.py and bola_scanner.py, with references for deeper guidance.

Quick Start

Provide a base URL and credentials, initialize an atest engagement, and proceed through Phase 1 recon, Phase 2 auth tests, Phase 3 injections, and Phase 4 reporting.

Dependency Matrix

Required Modules

pyyaml

Components

scriptsreferences

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: atest
Download link: https://github.com/n4igme/randscript/archive/main.zip#atest

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 510,000+ vetted skills library on demand.