Skills
.Work. You
Rest

defensive-open-redirect

Community

Detect and stop open redirects to protect users.

Data & Analytics#azure#detection#soc#kql#mde#open-redirect#sigma-rules
Authorriparino
Version1.0.0
Installs0

System Documentation

What problem does it solve?

Open redirects enable phishing and OAuth token theft by abusing redirect parameters to external destinations; this skill provides detection for such abuses and guidance for remediation.

Core Features & Use Cases

  • Detect external redirect parameters and protocol-relative bypasses
  • Identify OAuth redirect chains and potential token theft vectors
  • Sigma rules for redirect parameter anomalies and KQL queries for Azure Application Gateway and MDE network events
  • Use for SOC triage and web application security workflows

Quick Start

Load this skill into Claude and begin monitoring application traffic for external redirect indicators to trigger alerts and remediation steps.

Dependency Matrix

Required Modules

None required

Components

Standard package

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: defensive-open-redirect
Download link: https://github.com/riparino/Claude-Cyber/archive/main.zip#defensive-open-redirect

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.