Skills
.Work. You
Rest

auth-attacks

Community

Expose authentication bypass risks.

Software Engineering#authorization#authentication#oauth#pentesting#mfa#security-testing#saml
AuthorAshtonVaughan
Version1.0.0
Installs0

System Documentation

What problem does it solve?

Authentication bypass vulnerabilities undermine user confidentiality and allow unauthorized access across web apps and APIs. This skill guides security testers to fingerprint, test, and document auth weaknesses in a structured, authorized context.

Core Features & Use Cases

  • Comprehensive coverage of authentication and session management weaknesses across OAuth2, OpenID Connect, SAML, MFA, and token-based flows.
  • Phase-driven testing guidance including flow fingerprinting, threat modeling, evidence collection, and remediation recommendations.
  • Use Case: Assess a web application's login flow to identify bypass paths, capture reproducible evidence, and craft actionable mitigations.

Quick Start

Describe a concise, end-to-end test plan and PoC steps to reproduce an authentication bypass vulnerability.

Dependency Matrix

Required Modules

None required

Components

Standard package

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: auth-attacks
Download link: https://github.com/AshtonVaughan/bountyhound/archive/main.zip#auth-attacks

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.