corsy
CommunityDetect exploitable CORS misconfigurations.
AuthorAeonDave
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill identifies exploitable Cross-Origin Resource Sharing (CORS) misconfigurations in web applications, which can lead to security vulnerabilities like cross-origin data theft.
Core Features & Use Cases
- CORS Misconfiguration Scanning: Detects various types of exploitable CORS flaws, including reflected origins, trusted null origins, prefix/suffix matches, and trusted subdomains.
- Authenticated Scanning: Supports scanning endpoints that require authentication via custom headers.
- Bulk Scanning: Can process a list of URLs from a file for efficient vulnerability assessment.
- Use Case: A security analyst needs to quickly assess a web application for common CORS misconfigurations that could be exploited by an attacker to steal sensitive user data.
Quick Start
Use the corsy skill to scan the target URL https://example.com for CORS vulnerabilities.
Dependency Matrix
Required Modules
corsy
Components
references
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: corsy Download link: https://github.com/AeonDave/malskill/archive/main.zip#corsy Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.