detecting-api-enumeration-attacks

Detects and prevents API enumeration attacks, including BOLA and IDOR, by monitoring access patterns and authorization failures.

Install this skill

95/100

Security score

The detecting-api-enumeration-attacks skill was audited on Jun 8, 2026 and we found 5 security issues across 1 threat category. Review the findings below before installing.

Categories Tested

Security Issues

low line 423

External URL reference

SourceSKILL.md

423	- OWASP API1:2023 Broken Object Level Authorization: https://owasp.org/API-Security/editions/2023/en/0xa1-broken-object-level-authorization/

low line 424

External URL reference

SourceSKILL.md

424	- Traceable.ai BOLA Deep Dive: https://www.traceable.ai/blog-post/a-deep-dive-on-the-most-critical-api-vulnerability----bola-broken-object-level-authorization

low line 425

External URL reference

SourceSKILL.md

425	- Cequence BOLA Prevention: https://www.cequence.ai/solutions/bola-and-enumeration-attack-prevention/

low line 426

External URL reference

SourceSKILL.md

426	- Cloudflare API Shield BOLA Detection: https://community.cloudflare.com/t/api-shield-new-bola-vulnerability-detection-for-api-shield/883021

low line 427

External URL reference

SourceSKILL.md

427	- Sycope IDOR Detection via HTTP Traffic Analysis: https://www.sycope.com/post/idor-vulnerability-how-to-detect-an-attack-on-web-applications-through-http-traffic-analysis

Scanned on Jun 8, 2026

View Security Dashboard

Installation guide →

GitHub Stars 14.8K

Rate this skill

Categorydevelopment

UpdatedJune 10, 2026

api security-engineer data-analyst qa-engineer aws elasticsearch development data analytics

mukul975/Anthropic-Cybersecurity-Skills