Find and chain open redirect vulnerabilities
hunt-open-redirectskillsetup L3★1,791
elementalsouls/Claude-BugHunter ↗What it does
Identify and chain open redirects with XSS, CSRF, and credential harvesting
Best for
Creating low-friction phishing links when the target's own domain is trusted.
Inputs
- · Target URL with redirect parameter
Outputs
- · Phishing payload
- · Chain proof
Requires
- · curl
- · Burp
Preconditions
- · Redirect parameter found
- · Allowlist bypass tested
Failure modes
- · Scheme validation in place
- · Cross-domain redirect blocked
Trust signals
- · Protocol confusion bypass documented
- · Chain to credential capture shown