skills for everythingAgent Skill
2/7/2026a01-broken-access-control
Skills for testing broken access control vulnerabilities including IDOR, CSRF, CORS misconfigurations, and open redirects per OWASP A01:2021.
O
omkar
0GitHub Stars
1Views
npx skills add omkar-ukirde/RedStrike.AI
SKILL.md
| Name | a01-broken-access-control |
| Description | Skills for testing broken access control vulnerabilities including IDOR, CSRF, CORS misconfigurations, and open redirects per OWASP A01:2021. |
name: a01-broken-access-control description: Skills for testing broken access control vulnerabilities including IDOR, CSRF, CORS misconfigurations, and open redirects per OWASP A01:2021. compatibility: Requires Burp Suite for testing allowed-tools: burpsuite curl metadata: owasp: A01:2021 category: web
Broken Access Control (OWASP A01)
Access control enforces policy such that users cannot act outside their intended permissions.
Skills
- IDOR - Insecure Direct Object Reference exploitation
- CSRF - Cross-Site Request Forgery attacks
- CORS Bypass - CORS misconfiguration exploitation
- Open Redirect - URL redirect manipulation
Quick Reference
| Attack | Risk | Detection |
|---|---|---|
| IDOR | High | Modify object IDs in requests |
| CSRF | Medium | Check for missing/weak tokens |
| CORS | Medium | Test Origin header reflection |
| Open Redirect | Low-Medium | Test redirect parameters |
Skills Info
Original Name:a01-broken-access-controlAuthor:omkar
Download