cyberneticlibrary
← library

Find session management vulnerabilities

hunt-sessionskillsetup L11,791
elementalsouls/Claude-BugHunter
What it does

Hunt session vulnerabilities

Best for

Discovering session vulnerabilities when generic scanners miss domain-specific chains.

Inputs
  • · HTTP requests / JSON payloads
Outputs
  • · Audit/compliance report (structured)
  • · Extracted source code or structured data
Requires
  • · HTTP client (curl/requests)
  • · Git CLI
Preconditions

Target endpoint reachable; access to HTTP inspection tools

Failure modes
  • · Entropy insufficient for security claims
  • · Tokens accepted multiple times (replay)
  • · Security feature can be disabled/downgraded
Trust signals
  • · CVE-2024-22424
  • · OWASP WSTG framework compliance

Capability

security-audit → compare alternatives