Broken Access Control & Forced Browsing — DRAUPADI 👁️

Community

Detect and classify broken access control and forced browsing vulnerabilities

Authorjayjpatel9717
Version1.0.0
Installs0

System Documentation

What problem does it solve?

This Skill identifies and classifies broken access control and forced browsing vulnerabilities in web applications, ensuring secure user access and data protection.

Core Features & Use Cases

  • Broken Access Control Detection: Probes for function-level and endpoint-level access control failures.
  • Forced Browsing Detection: Identifies vulnerabilities where unauthorized users can access restricted pages.
  • Classification: Categorizes findings into 'Suspected-High', 'Suspected-Medium', or 'Not Vulnerable'.
  • Methodology: Utilizes a structured methodology for testing, including endpoint enumeration, privilege level identification, vertical privilege escalation testing, and forced browsing testing.

Quick Start

Run the 'draupadi' skill to perform a broken access control and forced browsing scan on your target application.

Dependency Matrix

Required Modules

None required

Components

scriptsreferences

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: Broken Access Control & Forced Browsing — DRAUPADI 👁️
Download link: https://github.com/jayjpatel9717/kurukshetra/archive/main.zip#broken-access-control-forced-browsing-draupadi

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 620,000+ vetted skills library on demand.