hunt-cors

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The prompt instructs using literal session cookies, CSRF tokens, and OOB identifiers in curl/fetch commands (e.g., -H "Cookie: $SESSION_COOKIE" and exfil via OOB-ID), which requires the LLM/agent to include secret values verbatim in generated commands/PoCs, creating an exfiltration risk.

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.90). These entries are highly suspicious: they include attacker-controlled domains and typosquats (eviltarget.com, target.com.evil.com, x.target.com.evil.com), OOB/exfil endpoints (OOB-ID.oastify.com), encoded/obfuscated origins and placeholders — none are official vendor download sources and they could be used to host malware or enable CORS/exfiltration attacks.

CRITICAL E006: Malicious code pattern detected in skill scripts.

• Malicious code pattern detected (high risk: 1.00). This document contains explicit offensive instructions and browser PoCs to exfiltrate authenticated responses, CSRF tokens, and other sensitive data via attacker-controlled origins and OOB callbacks, constituting deliberate credential theft and data exfiltration guidance.