Broken Access Control & Forced Browsing — DRAUPADI 👁️
CommunityDetect and classify broken access control and forced browsing vulnerabilities
Software Engineering#access control#security scanning#vulnerability detection#web application security#forced browsing
Authorjayjpatel9717
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill identifies and classifies broken access control and forced browsing vulnerabilities in web applications, ensuring secure user access and data protection.
Core Features & Use Cases
- Broken Access Control Detection: Probes for function-level and endpoint-level access control failures.
- Forced Browsing Detection: Identifies vulnerabilities where unauthorized users can access restricted pages.
- Classification: Categorizes findings into 'Suspected-High', 'Suspected-Medium', or 'Not Vulnerable'.
- Methodology: Utilizes a structured methodology for testing, including endpoint enumeration, privilege level identification, vertical privilege escalation testing, and forced browsing testing.
Quick Start
Run the 'draupadi' skill to perform a broken access control and forced browsing scan on your target application.
Dependency Matrix
Required Modules
None requiredComponents
scriptsreferences
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: Broken Access Control & Forced Browsing — DRAUPADI 👁️ Download link: https://github.com/jayjpatel9717/kurukshetra/archive/main.zip#broken-access-control-forced-browsing-draupadi Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 620,000+ vetted skills library on demand.