Login
Download

Skill UI

Browse and discover 6556+ curated skills
All Development Artificial Intelligence Design & Creative Product & Business Data Science Marketing Soft Skills Productivity Engineering Languages
Search authorization , found 39 results
Default Newest Most Downloaded

Secure OAuth2 Authorization Flow

configuring-oauth2-authorization-flow
mukul975/Anthropic-Cybersecurity-Skills
119
Guides teams through implementing secure OAuth 2.0 flows such as Authorization Code with PKCE, Client Credentials, and Device Authorization, covering PKCE math, scope design, token lifecycle, and OAuth 2.1 best practices.
View Details

API Enumeration Attack Detection

detecting-api-enumeration-attacks
mukul975/Anthropic-Cybersecurity-Skills
276
Detects and prevents API enumeration attacks such as BOLA and IDOR by monitoring rapid sequential identifier access, mixed authorization failures, and abnormal request patterns so SOC teams can build alerts in Splunk, Elastic, or other SIEM pipelines.
View Details

Broken Object Authorization Detection

detecting-broken-object-property-level-authorization
mukul975/Anthropic-Cybersecurity-Skills
382
Provides procedures to detect OWASP API3 BOPLA flaws by combining excessive data exposure and mass assignment checks, supporting scripted scans and manual API verification across privilege levels.
View Details

Broken Function Auth Tester

exploiting-broken-function-level-authorization
mukul975/Anthropic-Cybersecurity-Skills
308
Tests APIs for Broken Function Level Authorization by discovering admin or privileged endpoints, then verifying whether regular credentials can invoke them via method, path, or parameter manipulation, covering OWASP API5:2023 scenarios before reporting access control gaps.
View Details

Mass Assignment API Testing

exploiting-mass-assignment-in-rest-apis
mukul975/Anthropic-Cybersecurity-Skills
344
Guide for discovering and exploiting mass-assignment vulnerabilities in REST APIs to escalate privileges, manipulate restricted fields, and bypass authorization by injecting unexpected parameters during API security assessments.
View Details

GCP Binary Authorization

implementing-gcp-binary-authorization
mukul975/Anthropic-Cybersecurity-Skills
154
Guide to enable and enforce GCP Binary Authorization for GKE and Cloud Run so only attested container images pass deploy-time checks, covering attestor creation, policy tuning, and CI/CD attestations.
View Details

Investigating Insider Threats

investigating-insider-threat-indicators
mukul975/Anthropic-Cybersecurity-Skills
185
Investigates insider threat indicators using SIEM analytics, DLP alerts, UEBA signals, and HR data correlation to spot data exfiltration, unauthorized access, or anomalous behavior during sensitive windows such as notice periods, enabling SOC teams to build investigation timelines and evidence-ready reports with proper authorization.
View Details

Laravel Security Best Practices

laravel-security
affaan-m/everything-claude-code
126
Comprehensive guide for hardening Laravel applications with auth/authorization, validation, CSRF, file handling, rate limiting, secrets, and deployment safeguards.
View Details

GraphQL Security Assessment

performing-graphql-security-assessment
mukul975/Anthropic-Cybersecurity-Skills
174
Guides penetration testers through discovering endpoints, introspecting schemas, validating authorization, and probing injection/DoS risks when evaluating GraphQL APIs.
View Details

Web App Pentest Guide

performing-web-application-penetration-test
mukul975/Anthropic-Cybersecurity-Skills
187
Offers a systematic walkthrough of OWASP-aligned web application penetration testing using Burp Suite and manual checks to uncover auth, authorization, input validation, session, and business logic flaws before deployment or during compliance assessments.
View Details

Broken Object Authorization Testing

testing-api-for-broken-object-level-authorization
mukul975/Anthropic-Cybersecurity-Skills
329
Tests REST and GraphQL APIs for Broken Object Level Authorization (BOLA/IDOR) by intercepting requests, swapping object identifiers, and confirming whether per-object access controls stop authenticated users from touching others’ resources.
View Details

API Mass Assignment Test

testing-api-for-mass-assignment-vulnerability
mukul975/Anthropic-Cybersecurity-Skills
292
Automates API testing for mass assignment vulnerabilities by identifying writable endpoints, injecting privileged parameters (e.g., role, isAdmin, balance), and verifying whether the server binds them without filtering, helping defenders confirm Broken Object Property Level Authorization risks before deployment.
View Details
Prev1234Next
Language
简体中文
English