Skip to main content
在 Manus 中运行任何 Skill
一键导入

web2-vuln-classes

星标2
分支0
更新时间2026年6月30日 15:37

Complete reference for 22 web2 bug classes. Covers IDOR, auth bypass, XSS, SSRF (11 IP bypass techniques), SQLi, business logic, race conditions, OAuth/OIDC, file upload (10 bypass techniques), GraphQL, LLM/AI (ASI01-ASI10), API misconfig (mass assignment, JWT, prototype pollution, CORS), ATO taxonomy, SSTI, subdomain takeover, cloud misconfigs, HTTP smuggling, cache poisoning, MFA bypass (9 patterns), SAML attacks, insecure deserialization (Python/Java/.NET/PHP/Ruby), and prototype pollution (Node.js gadget chains). Use when hunting a specific vuln class.

安装

用 Codex 或 Claude 帮你安装 复制这段 Prompt,粘贴到 Codex、Claude 或其他助手里,让它检查 Skill 页面并帮你完成安装。

SKILL.md
readonly