explainx.ainewsletter3.4k
tag

idor

5 indexed skills · max 10 per page

skills (5)

idor-vulnerability-testing

davila7/claude-code-templates · Testing

2

Provide systematic methodologies for identifying and exploiting Insecure Direct Object Reference (IDOR) vulnerabilities in web applications. This skill covers both database object references and static file references, detection techniques using parameter manipulation and enumeration, exploitation via Burp Suite, and remediation strategies for securing applications against unauthorized access.

testing-api-for-broken-object-level-authorization

mukul975/Anthropic-Cybersecurity-Skills · testing-api-for-broken-object-level-authorization

0

Tests REST and GraphQL APIs for Broken Object Level Authorization (BOLA/IDOR) vulnerabilities where an authenticated user can access or modify resources belonging to other users by manipulating object identifiers in API requests. The tester intercepts API calls, identifies object ID parameters (numeric IDs, UUIDs, slugs), and systematically replaces them with IDs belonging to other users to determine if the server enforces per-object authorization. This is OWASP API Security Top 10 2023 risk API1. Activates for requests involving BOLA testing, IDOR in APIs, object-level authorization testing, or API access control bypass.

detecting-api-enumeration-attacks

mukul975/Anthropic-Cybersecurity-Skills · detecting-api-enumeration-attacks

0

Detect and prevent API enumeration attacks including BOLA and IDOR exploitation by monitoring sequential identifier access patterns and authorization failures.

exploiting-idor-vulnerabilities

mukul975/Anthropic-Cybersecurity-Skills · exploiting-idor-vulnerabilities

0

Identifying and exploiting Insecure Direct Object Reference vulnerabilities to access unauthorized resources by manipulating object identifiers in API requests and URLs.

idor-vulnerability-testing

sickn33/antigravity-awesome-skills · Testing

0

Provide systematic methodologies for identifying and exploiting Insecure Direct Object Reference (IDOR) vulnerabilities in web applications. This skill covers both database object references and static file references, detection techniques using parameter manipulation and enumeration, exploitation via Burp Suite, and remediation strategies for securing applications against unauthorized access.