security-review-owasp-multifactor-authentication

Community

Find MFA bypasses before attackers do

Authorsjinks
Version1.0.0
Installs0

System Documentation

What problem does it solve?

This Skill helps reviewers assess multifactor authentication implementations for bypasses, weak recovery, replayable OTPs, and unsafe factor changes without depending on the original OWASP cheat sheets.

Core Features & Use Cases

  • Reviews MFA enforcement across login, step-up actions, sensitive account changes, and alternate entry points.
  • Checks OTP generation, TTL, single-use behavior, rate limiting, logging, and replay protection.
  • Evaluates recovery flows, factor replacement, fallback channels, and adaptive MFA logic for consistency and abuse resistance.

Quick Start

Review the authentication flow and identify any MFA bypass, recovery weakness, or factor lifecycle flaw using this skill.

Dependency Matrix

Required Modules

None required

Components

references

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: security-review-owasp-multifactor-authentication
Download link: https://github.com/sjinks/ai-owasp-skillset/archive/main.zip#security-review-owasp-multifactor-authentication

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 536,000+ vetted skills library on demand.