broken-auth-detector
Installation
SKILL.md
Broken Authentication Detector (OWASP A02)
Identify and fix authentication vulnerabilities including weak passwords, session hijacking, and credential stuffing.
When to Use
- Reviewing login/signup implementations
- Auditing session management
- Implementing password reset flows
- Adding OAuth/SSO integration
- Setting up JWT authentication
- Implementing MFA/2FA
Common Vulnerabilities
| Vulnerability | Risk | Impact |
|---|---|---|
| Weak password policy | HIGH | Easy brute force |
| No rate limiting | HIGH | Credential stuffing |
Related skills