This skill should be used when the user asks to "test API security", "fuzz APIs", "find IDOR vulnerabilities", "test REST API", "test GraphQL", "API penetration testing", "bug bounty API testing", or needs guidance on API security assessment techniques.
8.1
Rating
0
Installs
Security
Category
Excellent API security testing skill with comprehensive coverage of REST, SOAP, and GraphQL vulnerabilities. The description clearly indicates when to invoke this skill. Task knowledge is exceptional, providing detailed exploitation techniques, payloads, bypass methods, and a strong tool reference section. Structure is good with logical sections and useful tables, though with 400+ lines it borders on dense for a single file. Novelty is solid - while experienced security professionals know these techniques, consolidating this expertise into a reusable skill saves significant token cost and provides structured methodology that a CLI agent would struggle to replicate comprehensively. Minor improvement areas: could benefit from separating extensive tool lists or payload collections into referenced files, and adding more concrete scripting examples for automation.
davila7
Skill Author
Loading SKILL.md…
