credential-attack
CommunityEnhance your bug bounty campaigns with targeted credential attack strategies.
Authorhataiit9x
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill aids in the discovery and exploitation of valid credentials in bug bounty campaigns, guiding when and how to execute credential attacks efficiently and legally.
Core Features & Use Cases
- Password Spray Methodology: Aids in identifying whether a credential attack is warranted for a target, and offers the framework for conducting it.
- Wordlist Generation & Breach Checks: Generates and enriches wordlists, and checks passwords against breaches to identify strong candidates for spray.
- OSINT & Employee Usernames: Gathers information about potential employees, expanding the pool of usernames to be targeted.
- Spray & Authentication: Executes password spray against login endpoints, and upon finding valid credentials, aids in authenticating for deeper recon.
- Legal & Operational Guidance: Provides a legal and operational framework for credential testing, including best practices and pitfalls.
Quick Start
Execute a password spray on a target by using the command: bb spray example.com
Dependency Matrix
Required Modules
None requiredComponents
scriptsreferences
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: credential-attack Download link: https://github.com/hataiit9x/Bbkit-AI/archive/main.zip#credential-attack Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 620,000+ vetted skills library on demand.