skills for everythingAgent Skill
2/7/2026a07-auth-failures
Skills for exploiting authentication and session management vulnerabilities including JWT, OAuth, and 2FA bypass per OWASP A07:2021.
O
omkar
0GitHub Stars
1Views
npx skills add omkar-ukirde/RedStrike.AI
SKILL.md
| Name | a07-auth-failures |
| Description | Skills for exploiting authentication and session management vulnerabilities including JWT, OAuth, and 2FA bypass per OWASP A07:2021. |
name: a07-auth-failures description: Skills for exploiting authentication and session management vulnerabilities including JWT, OAuth, and 2FA bypass per OWASP A07:2021. compatibility: Requires jwt_tool, hashcat allowed-tools: jwt-tool hashcat burpsuite curl metadata: owasp: A07:2021 category: web
Identification and Authentication Failures (OWASP A07)
Weaknesses in authentication mechanisms and session management.
Skills
- JWT Attacks - JSON Web Token exploitation
- OAuth Attacks - OAuth flow manipulation
- Session Attacks - Session fixation and hijacking
- 2FA Bypass - Two-factor authentication bypass
- Password Reset - Reset flow exploitation
Quick Reference
| Attack | Target | Technique |
|---|---|---|
| JWT | Token auth | Algorithm confusion, weak secret |
| OAuth | SSO/social login | Redirect manipulation |
| Session | Cookies | Fixation, hijacking |
| 2FA | MFA | Direct access, brute force |
Skills Info
Original Name:a07-auth-failuresAuthor:omkar
Download