websocket-test

Community

Find WebSocket security flaws faster

Authorjinyimeng01
Version1.0.0
Installs0

System Documentation

What problem does it solve?

This Skill helps security testers systematically identify WebSocket vulnerabilities such as authentication flaws, authorization bypasses, insecure subscriptions, message injection, replay issues, and connection abuse risks.

Core Features & Use Cases

  • WebSocket Endpoint Discovery: Locate ws and wss endpoints, Socket.IO usage, and client-side connection patterns through JavaScript analysis.
  • Security Validation Workflows: Test authentication handling, CSWSH exposure, subscription authorization, message integrity, and replay protections using controlled test accounts.
  • Use Case: Assess a real-time application that uses WebSocket communication by mapping endpoints from frontend code and validating whether users can only access their own messages and channels.

Quick Start

Use the websocket-test skill to analyze a target application's JavaScript files and create a WebSocket security testing report for discovered endpoints.

Dependency Matrix

Required Modules

None required

Components

Standard package

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: websocket-test
Download link: https://github.com/jinyimeng01/mastermind-bug-bounty/archive/main.zip#websocket-test

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 545,000+ vetted skills library on demand.