broken-access-controll-detect

Community

Detect unauthorized access in web applications.

AuthorChid0k
Version1.0.0
Installs0

System Documentation

What problem does it solve?

This skill helps identify broken access control vulnerabilities in web applications, ensuring that proper authorization is enforced across different user roles, contexts, and operations.

Core Features & Use Cases

  • Broken Access Control Detection: Identifies various flaws such as bypassing authorization, horizontal/vertical privilege escalation, IDOR/BOLA, BFLA, and mass assignment vulnerabilities.
  • Controlled Testing: Uses controlled accounts and reversible data for testing, emphasizing safety and non-destructive validation.
  • Reproducible Workflow: Provides a structured methodology for reproducing and confirming findings, minimizing false positives.
  • Use Case: Imagine you have a web application with multiple user roles. This Skill helps ensure that sensitive actions like data modification or deletion can only be performed by authorized users, reducing the risk of data breaches.

Quick Start

To detect broken access control in your application, use the skill by executing the test sequence with controlled test accounts and data.

Dependency Matrix

Required Modules

None required

Components

scriptsreferences

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: broken-access-controll-detect
Download link: https://github.com/Chid0k/claude-marketplace/archive/main.zip#broken-access-controll-detect

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 620,000+ vetted skills library on demand.