session-fixation
OfficialSecure sessions, prevent account takeover.
Software Engineering#authentication#session management#web security#pentesting#session fixation#token exposure
Authorsecurityfortech
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill addresses critical session management vulnerabilities, protecting against session fixation and token exposure that can lead to unauthorized account access.
Core Features & Use Cases
- Detect Session Fixation: Identifies if applications issue new session tokens upon authentication.
- Prevent Token Exposure: Tests for insecure transmission of session IDs (HTTP, GET parameters).
- Use Case: A pentester uses this skill to verify that a web application properly invalidates session tokens after logout, preventing attackers from hijacking user accounts by exploiting predictable or exposed session IDs.
Quick Start
Analyze the provided target URL for session fixation vulnerabilities.
Dependency Matrix
Required Modules
None requiredComponents
scriptsreferences
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: session-fixation Download link: https://github.com/securityfortech/hacking-skills/archive/main.zip#session-fixation Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.