hunt-mfa-bypass

Identifies and exploits vulnerabilities in MFA/2FA implementations to prevent account takeover through various bypass techniques.

Install this skill

92/100

Security score

The hunt-mfa-bypass skill was audited on Jun 10, 2026 and we found 4 security issues across 2 threat categories. Review the findings below before installing.

Categories Tested

Security Issues

medium line 41

Curl to non-GitHub URL

SourceSKILL.md

41	curl -s -b "session=PRE_MFA_SESSION" https://target.com/dashboard

low line 12

External URL reference

SourceSKILL.md

12	ffuf -u "https://target.com/api/verify-otp" \

low line 41

External URL reference

SourceSKILL.md

41	curl -s -b "session=PRE_MFA_SESSION" https://target.com/dashboard

low line 49

External URL reference

SourceSKILL.md

49	async with session.post("https://target.com/api/mfa/verify",

Scanned on Jun 10, 2026

View Security Dashboard

Installation guide →

GitHub Stars 2.2K

Rate this skill

Categorydevelopment

UpdatedJune 15, 2026

docx git api testing backend security-engineer qa-engineer backend-developer development

elementalsouls/Claude-BugHunter