websocket-test
CommunityFind WebSocket security flaws faster
Legal & Compliance#authorization#authentication#security testing#penetration testing#websocket#cswsh#javascript analysis
Authorjinyimeng01
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill helps security testers systematically identify WebSocket vulnerabilities such as authentication flaws, authorization bypasses, insecure subscriptions, message injection, replay issues, and connection abuse risks.
Core Features & Use Cases
- WebSocket Endpoint Discovery: Locate ws and wss endpoints, Socket.IO usage, and client-side connection patterns through JavaScript analysis.
- Security Validation Workflows: Test authentication handling, CSWSH exposure, subscription authorization, message integrity, and replay protections using controlled test accounts.
- Use Case: Assess a real-time application that uses WebSocket communication by mapping endpoints from frontend code and validating whether users can only access their own messages and channels.
Quick Start
Use the websocket-test skill to analyze a target application's JavaScript files and create a WebSocket security testing report for discovered endpoints.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: websocket-test Download link: https://github.com/jinyimeng01/mastermind-bug-bounty/archive/main.zip#websocket-test Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 545,000+ vetted skills library on demand.