hunt-open-redirect
CommunityDetect open redirects and chain to OAuth/ATO.
Authorsseshachala
Version1.0.0
Installs0
System Documentation
What problem does it solve?
Open redirects alone are typically low risk but can be chained to privilege-escalating flows like OAuth token theft (ATO) and phishing. By identifying and classifying redirect parameters, this skill helps you map potential attack chains and prioritize remediation or responsible disclosure.
Core Features & Use Cases
- Identify redirect parameters such as ?redirect=, ?next=, ?return= to discover open redirect weaknesses.
- Evaluate chains to OAuth, phishing, and SSRF, enabling realistic red-team scenarios within authorized engagements.
- Provide a repeatable hunting workflow with validation steps and practical payload patterns to assess redirect-related risks.
Quick Start
Load the skill and begin scanning targets for redirect parameters, then verify open redirects using your preferred testing stack.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: hunt-open-redirect Download link: https://github.com/sseshachala/Claude-BugHunter-archive/archive/main.zip#hunt-open-redirect Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 510,000+ vetted skills library on demand.