exploiting-oauth-misconfiguration
CommunityIdentify OAuth misconfigurations in security tests.
AuthorYukiIto1999
Version1.0.0
Installs0
System Documentation
What problem does it solve?
Identifying OAuth 2.0 and OpenID Connect misconfigurations that can lead to redirect URI bypasses, token leakage, and authorization code theft during security assessments.
Core Features & Use Cases
- Detect redirect URI validation gaps and potential open redirect vectors.
- Assess PKCE presence and strength in public clients.
- Identify token leakage vectors and unsafe OAuth flows.
- Provide actionable findings and remediation guidance for security teams.
Quick Start
Run the agent against your OAuth provider to initiate automated misconfiguration checks.
Dependency Matrix
Required Modules
requests
Components
scriptsreferences
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: exploiting-oauth-misconfiguration Download link: https://github.com/YukiIto1999/ctf-sleuth/archive/main.zip#exploiting-oauth-misconfiguration Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.