saml-sso-attack

Community

Test and exploit SAML SSO authentication flaws.

Authoruphiago
Version1.0.0
Installs0

System Documentation

What problem does it solve?

This Skill solves the challenge of identifying and exploiting common SAML SSO authentication bypass vulnerabilities that are often missed in standard web application penetration tests, allowing security teams to validate the security of identity and access management implementations.

Core Features & Use Cases

  • SAML Endpoint Discovery: Automatically identifies common SAML IdP and SP endpoints across multiple platforms including SimpleSAMLphp, ADFS, Keycloak, and Shibboleth.
  • Metadata & Payload Analysis: Extracts and parses IdP metadata, decodes base64-encoded SAML requests and responses to identify misconfigurations.
  • Attack Vector Testing: Covers timing-based user enumeration, XML Signature Wrapping (XSW), signature stripping, and comment injection attacks for user impersonation.
  • Use Case: A pentester testing an organization that uses SAML SSO for internal tool access can use this Skill to quickly identify exposed ADFS WS-Trust endpoints or vulnerable signature validation that allows unauthorized access to user accounts.

Quick Start

Use the saml-sso-attack skill to enumerate valid users on the target SSO login endpoint and test for XML Signature Wrapping vulnerabilities on the identified SAML Service Provider.

Dependency Matrix

Required Modules

None required

Components

Standard package

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: saml-sso-attack
Download link: https://github.com/uphiago/recon-skills/archive/main.zip#saml-sso-attack

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 537,000+ vetted skills library on demand.