Hunt OAuth security vulnerabilities
hunt-oauthskillsetup L3★1,791
elementalsouls/Claude-BugHunter ↗What it does
Hunt OAuth 2.0/OpenID Connect auth bypass via authorization code reuse, scope manipulation, PKCE bypass
Best for
Stealing user sessions or escalating privileges via OAuth flow manipulation.
Inputs
- · OAuth endpoint
- · Authorization code
- · Client secret (if available)
Outputs
- · Token theft payload
- · Bypass proof
Requires
- · curl
- · Burp
- · OAuth proxy tools
Preconditions
- · OAuth provider identified
- · Redirect URI enumerated
Failure modes
- · Authorization code single-use enforced
- · State validation enabled
Trust signals
- · PKCE bypass via algorithm downgrade
- · Code reuse test