hunt-ato

Provides a comprehensive taxonomy for identifying and exploiting account takeover vulnerabilities across various paths and scenarios.

Install this skill

82/100

Security score

The hunt-ato skill was audited on Jun 10, 2026 and we found 10 security issues across 2 threat categories. Review the findings below before installing.

Categories Tested

Security Issues

medium line 67

Curl to non-GitHub URL

SourceSKILL.md

67	curl -s https://target.com/.well-known/jwks.json # or /oauth/.well-known/... grab the RSA pub key

medium line 86

Curl to non-GitHub URL

SourceSKILL.md

86	t=$(curl -s -o /dev/null -w '%{time_total}' -d "user=victimB&pass=$p" https://target.com/login)

low line 27

External URL reference

SourceSKILL.md

27	→ page loads third-party resource: <script src="https://analytics.com/t.js">

low line 28

External URL reference

SourceSKILL.md

28	→ browser sends Referer: https://target.com/reset-password?token=ABC123

low line 36

External URL reference

SourceSKILL.md

36	ffuf -u "https://target.com/api/reset/verify" -X POST \

low line 67

External URL reference

SourceSKILL.md

67	curl -s https://target.com/.well-known/jwks.json # or /oauth/.well-known/... grab the RSA pub key

low line 75

External URL reference

SourceSKILL.md

75	Verified grounding for this class: [CVE-2015-9235](https://nvd.nist.gov/vuln/detail/CVE-2015-9235) (node `jsonwebtoken` <4.2.2 — alg confusion / none bypass), [CVE-2016-10555](https://nvd.nist.gov

low line 86

External URL reference

SourceSKILL.md