cybernetic
← library

Test OAuth implementation for attack vectors

offensive-oauthskillsetup L22,144
SnailSploit/Claude-Red
What it does

Use this skill when the conversation involves

Best for

Testing OAuth implementations for authorization bypass and token leakage vulnerabilities.

Inputs
  • · auth_token (string)
  • · target (string or URL)
  • · payload (JSON or binary)
  • · API endpoint (string)
  • · HTTP request object
Outputs
  • · HTTP response (JSON/text)
  • · log or transcript text
Requires
  • · HTTP API client
  • · GitHub API
  • · OAuth 2.0 authorization server
Preconditions
  • · Valid authentication credentials
  • · Service endpoint reachable
  • · Source code available
Failure modes
  • · API endpoint unreachable or rate-limited
  • · Authentication failure or invalid token
Trust signals
  • · Open-source implementation available
  • · Test suite included
  • · Attribution to original author(s)