client side

Skill

Client-side vulnerability testing - XSS (reflected/stored/DOM), CSRF, CORS misconfiguration, Clickjacking, DOM-based attacks, and Prototype Pollution.

Files45
  • @skills/client-side/SKILL.md
  • @skills/client-side/reference/INDEX.md
  • @skills/client-side/reference/clickjacking-cheat-sheet.md
  • @skills/client-side/reference/clickjacking-quickstart.md
  • @skills/client-side/reference/client-side-principles.md
  • @skills/client-side/reference/cors-cheat-sheet.md
  • @skills/client-side/reference/cors-quickstart.md
  • @skills/client-side/reference/csrf-quickstart.md
  • @skills/client-side/reference/dom-xss-advanced.md
  • @skills/client-side/reference/dom-xss-quickstart.md
  • @skills/client-side/reference/prototype-pollution-quickstart.md
  • @skills/client-side/reference/prototype-pollution-resources.md
  • @skills/client-side/reference/scenarios/dom-vulnerabilities/angularjs-injection.md
  • @skills/client-side/reference/scenarios/dom-vulnerabilities/detection-methodology.md
  • @skills/client-side/reference/scenarios/dom-vulnerabilities/document-write-sink.md
  • @skills/client-side/reference/scenarios/dom-vulnerabilities/dom-clobbering-globals.md
  • @skills/client-side/reference/scenarios/dom-vulnerabilities/dom-clobbering-sanitizer-bypass.md
  • @skills/client-side/reference/scenarios/dom-vulnerabilities/dom-xss-fundamentals.md
  • @skills/client-side/reference/scenarios/dom-vulnerabilities/exfiltration-and-chaining.md
  • @skills/client-side/reference/scenarios/dom-vulnerabilities/innerhtml-sink.md
  • @skills/client-side/reference/scenarios/dom-vulnerabilities/jquery-sinks.md
  • @skills/client-side/reference/scenarios/dom-vulnerabilities/postmessage-vulnerabilities.md
  • @skills/client-side/reference/scenarios/dom-vulnerabilities/prevention-best-practices.md
  • @skills/client-side/reference/scenarios/dom-vulnerabilities/prototype-pollution-dom.md
  • @skills/client-side/reference/scenarios/dom-vulnerabilities/tools-and-automation.md
  • @skills/client-side/reference/scenarios/dom-vulnerabilities/waf-filter-bypass.md
  • @skills/client-side/reference/scenarios/prototype-pollution/bypass-techniques.md
  • @skills/client-side/reference/scenarios/prototype-pollution/client-side-pollution.md
  • @skills/client-side/reference/scenarios/prototype-pollution/detection.md
  • @skills/client-side/reference/scenarios/prototype-pollution/gadget-discovery.md
  • @skills/client-side/reference/scenarios/prototype-pollution/prevention.md
  • @skills/client-side/reference/scenarios/prototype-pollution/server-side-pollution.md
  • @skills/client-side/reference/scenarios/prototype-pollution/testing-tools.md
  • @skills/client-side/reference/scenarios/xss/beef-integration.md
  • @skills/client-side/reference/scenarios/xss/cookie-theft.md
  • @skills/client-side/reference/scenarios/xss/csrf-via-xss.md
  • @skills/client-side/reference/scenarios/xss/data-exfiltration.md
  • @skills/client-side/reference/scenarios/xss/defacement.md
  • @skills/client-side/reference/scenarios/xss/internal-network-scanning.md
  • @skills/client-side/reference/scenarios/xss/jsonp-callback-iframe-exfil.md
  • @skills/client-side/reference/scenarios/xss/keylogging.md
  • @skills/client-side/reference/scenarios/xss/password-capture.md
  • @skills/client-side/reference/scenarios/xss/phishing-attacks.md
  • @skills/client-side/reference/scenarios/xss/session-hijacking.md
  • @skills/client-side/reference/xss-bypass-techniques.md

Client-Side

Test for client-side vulnerabilities across modern web applications and SPAs.

Techniques

TypeKey Vectors
XSSReflected, Stored, DOM-based, framework-specific (React, Vue, Angular)
CSRFToken bypass, SameSite cookie bypass, cross-origin requests
CORSMisconfigured origins, null origin, wildcard credentials
ClickjackingFrame-based, drag-and-drop, multi-step
DOM-basedDOM sinks, source/sink analysis, JavaScript URL schemes
Prototype PollutionClient-side gadgets, server-side pollution, property injection

Workflow

  1. Identify input sources and data flows
  2. Classify sink contexts (HTML, attribute, URL, JS, CSS)
  3. Enumerate defenses (encoding, CSP, sanitizers, Trusted Types)
  4. Craft context-appropriate payloads
  5. Validate execution and demonstrate impact
  6. Document with reproduction steps and remediation

Reference

  • reference/xss*.md - XSS bypass techniques and exploitation
  • reference/csrf*.md - CSRF techniques and bypasses
  • reference/cors*.md - CORS misconfiguration testing
  • reference/clickjacking*.md - Clickjacking techniques
  • reference/dom*.md - DOM-based vulnerability testing
  • reference/prototype-pollution*.md - Prototype pollution techniques
client-side — Kortix Marketplace | Kortix