Skills
.Work. You
Rest

csp-bypass-advanced

Official

CSP bypass — Advanced Techniques

Software Engineering#csp#web-security#policy#bypass#exfiltration#security-assessment
Authoryaklang
Version1.0.0
Installs0

System Documentation

What problem does it solve?

CSP policies are often misconfigured or brittle, leaving apps vulnerable to bypasses and data exfiltration. This skill helps security practitioners identify weaknesses and exfiltration paths that CSP may fail to block.

Core Features & Use Cases

  • Analyze CSP policies to detect missing directives such as base-uri, form-action, frame-ancestors.
  • Map and reason about bypass vectors across script-src, nonce, strict-dynamic, and framework integrations (Angular/Vue) to assess risk.
  • Provide actionable guidance to mitigate weaknesses and implement stronger CSP controls in real-world web apps.

Quick Start

Run an assessment of a target page's CSP to identify missing directives and test common bypass vectors.

Dependency Matrix

Required Modules

None required

Components

Standard package

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: csp-bypass-advanced
Download link: https://github.com/yaklang/hack-skills/archive/main.zip#csp-bypass-advanced

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.