Hunt DOM and client-side vulnerabilities

Hunt client-side DOM vulnerabilities — DOM Clobbering

Use for hunt client-side dom vulnerabilities — dom clobbering (overwrite js globals via html injection), postmessage hijacking (missing origin check), service worker abuse (intercept requests from same-origin script), css injection/exfiltration (attribute selectors → token char-by-char via oob), client-side template injection, dangerouslysetinnerhtml. grounded in named public research: gareth heyes / portswigger dom-clobbering + dom-invader, michał bentkowski dompurify clobbering bypasses, jquery htmlprefilter xss (cve-2020-11022 / cve-2020-11023), d0nut css-exfil research. use when hunting dom-xss, client-side auth bypass, or token exfiltration without server-side interaction.

• · target
• · test vectors
• · payloads

• · vulnerability report
• · PoC code
• · impact assessment

• · curl
• · HTTP client

Required dependencies and environment setup — see body for details

See documentation for known limitations and edge cases

• · Skill: skill
• · Repository: elementalsouls/Claude-BugHunter