pentest-access-control
CommunityBypass access controls and escalate privileges.
Software Engineering#access control#RBAC#penetration testing#SSO#privilege escalation#authorization bypass
Authoryhy0
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill helps penetration testers identify and exploit vulnerabilities related to access control, enabling them to bypass authorization mechanisms and escalate their privileges within a target system.
Core Features & Use Cases
- Attack Surface Discovery: Identifies high-risk areas like admin panels, user role management, and SSO integrations.
- Exploitation Techniques: Provides methods for vertical and horizontal privilege escalation, API gateway bypass, and multi-tenant isolation flaws.
- Use Case: When testing a web application, use this Skill to systematically check if a regular user can access administrative endpoints or modify other users' data by manipulating request parameters or HTTP headers.
Quick Start
Use the pentest-access-control skill to test for vertical privilege escalation by attempting to access admin endpoints with a standard user's credentials.
Dependency Matrix
Required Modules
None requiredComponents
references
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: pentest-access-control Download link: https://github.com/yhy0/ghsa-skill-builder/archive/main.zip#pentest-access-control Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.