oauth-attacks
OfficialExploit OAuth/OIDC vulnerabilities.
Software Engineering#oauth#penetration testing#web security#oidc#authentication bypass#vulnerability exploitation
Authorblacklanternsecurity
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill helps penetration testers identify and exploit common vulnerabilities in OAuth 2.0 and OpenID Connect implementations, which are frequently used for authentication and authorization.
Core Features & Use Cases
- Vulnerability Discovery: Maps OAuth endpoints and identifies common misconfigurations.
- Exploitation Techniques: Provides detailed steps for redirect URI manipulation, state parameter bypass, authorization code theft, and token leakage.
- Use Case: A penetration tester can use this Skill to find and exploit a redirect URI vulnerability, allowing them to steal an authorization code and gain unauthorized access to a user's account.
Quick Start
Use the oauth-attacks skill to test for redirect URI manipulation against the target application.
Dependency Matrix
Required Modules
None requiredComponents
scriptsreferences
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: oauth-attacks Download link: https://github.com/blacklanternsecurity/red-run/archive/main.zip#oauth-attacks Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.