web app logic

Skill

Web application logic testing - business logic flaws, race conditions, access control, cache poisoning/deception, and information disclosure.

Files56
  • @skills/web-app-logic/SKILL.md
  • @skills/web-app-logic/reference/INDEX.md
  • @skills/web-app-logic/reference/access-control-resources.md
  • @skills/web-app-logic/reference/business-logic-resources.md
  • @skills/web-app-logic/reference/information-disclosure-resources.md
  • @skills/web-app-logic/reference/race-conditions-resources.md
  • @skills/web-app-logic/reference/scenarios/access-control/data-leakage-redirect.md
  • @skills/web-app-logic/reference/scenarios/access-control/header-bypass.md
  • @skills/web-app-logic/reference/scenarios/access-control/idor-action.md
  • @skills/web-app-logic/reference/scenarios/access-control/idor-read.md
  • @skills/web-app-logic/reference/scenarios/access-control/mass-assignment.md
  • @skills/web-app-logic/reference/scenarios/access-control/method-bypass.md
  • @skills/web-app-logic/reference/scenarios/access-control/multi-step-bypass.md
  • @skills/web-app-logic/reference/scenarios/access-control/parameter-based-controls.md
  • @skills/web-app-logic/reference/scenarios/access-control/referer-bypass.md
  • @skills/web-app-logic/reference/scenarios/access-control/unprotected-functionality.md
  • @skills/web-app-logic/reference/scenarios/business-logic/burp-extension-scanner.md
  • @skills/web-app-logic/reference/scenarios/business-logic/coupon-stacking.md
  • @skills/web-app-logic/reference/scenarios/business-logic/csrf-and-session-bypass.md
  • @skills/web-app-logic/reference/scenarios/business-logic/email-domain-bypass.md
  • @skills/web-app-logic/reference/scenarios/business-logic/gift-card-loop.md
  • @skills/web-app-logic/reference/scenarios/business-logic/parameter-pollution.md
  • @skills/web-app-logic/reference/scenarios/business-logic/price-manipulation.md
  • @skills/web-app-logic/reference/scenarios/business-logic/quantity-manipulation.md
  • @skills/web-app-logic/reference/scenarios/business-logic/regex-input-validation-bypass.md
  • @skills/web-app-logic/reference/scenarios/business-logic/workflow-bypass.md
  • @skills/web-app-logic/reference/scenarios/cache/deception-delimiter.md
  • @skills/web-app-logic/reference/scenarios/cache/deception-normalization.md
  • @skills/web-app-logic/reference/scenarios/cache/deception-path-mapping.md
  • @skills/web-app-logic/reference/scenarios/cache/deception-via-smuggling.md
  • @skills/web-app-logic/reference/scenarios/cache/poisoning-body-args.md
  • @skills/web-app-logic/reference/scenarios/cache/poisoning-setnx-race.md
  • @skills/web-app-logic/reference/scenarios/cache/poisoning-unkeyed-headers.md
  • @skills/web-app-logic/reference/scenarios/cache/poisoning-unkeyed-params.md
  • @skills/web-app-logic/reference/scenarios/info-disclosure/backups-and-version-control.md
  • @skills/web-app-logic/reference/scenarios/info-disclosure/client-side-storage-audit.md
  • @skills/web-app-logic/reference/scenarios/info-disclosure/debug-pages-and-cms-apis.md
  • @skills/web-app-logic/reference/scenarios/info-disclosure/error-messages.md
  • @skills/web-app-logic/reference/scenarios/info-disclosure/http-method-disclosure.md
  • @skills/web-app-logic/reference/scenarios/info-disclosure/javascript-source-review.md
  • @skills/web-app-logic/reference/scenarios/info-disclosure/multi-port-and-storage-discovery.md
  • @skills/web-app-logic/reference/scenarios/info-disclosure/security-headers-audit.md
  • @skills/web-app-logic/reference/scenarios/race-conditions/advanced-techniques.md
  • @skills/web-app-logic/reference/scenarios/race-conditions/container-startup-admin-registration.md
  • @skills/web-app-logic/reference/scenarios/race-conditions/detection-and-baseline.md
  • @skills/web-app-logic/reference/scenarios/race-conditions/file-upload-race.md
  • @skills/web-app-logic/reference/scenarios/race-conditions/limit-overrun.md
  • @skills/web-app-logic/reference/scenarios/race-conditions/multi-endpoint.md
  • @skills/web-app-logic/reference/scenarios/race-conditions/partial-construction.md
  • @skills/web-app-logic/reference/scenarios/race-conditions/rate-limit-bypass.md
  • @skills/web-app-logic/reference/scenarios/race-conditions/single-endpoint-collision.md
  • @skills/web-app-logic/reference/scenarios/race-conditions/timestamp-collision.md
  • @skills/web-app-logic/reference/scenarios/race-conditions/toctou-session.md
  • @skills/web-app-logic/reference/web-app-logic-principles.md
  • @skills/web-app-logic/reference/web-cache-deception-resources.md
  • @skills/web-app-logic/reference/web-cache-poisoning-resources.md

Web Application Logic

Test for logic flaws and application-specific vulnerabilities that automated scanners miss.

Techniques

TypeKey Vectors
Business LogicWorkflow bypass, price manipulation, feature abuse
Race ConditionsTOCTOU, limit bypass, double-spend, parallel requests
Access ControlIDOR, horizontal/vertical privilege escalation, forced browsing
Cache PoisoningUnkeyed headers/parameters, fat GET, response splitting
Cache DeceptionPath confusion, static extension tricks, normalization
Info DisclosureError messages, debug endpoints, source code, metadata

Workflow

  1. Map application workflows and business rules
  2. Identify state-dependent operations and trust boundaries
  3. Test logic assumptions with edge cases and race conditions
  4. Verify access control across user roles
  5. Document impact with PoC demonstrations

Reference

  • reference/business-logic*.md - Business logic testing techniques
  • reference/race-conditions*.md - Race condition exploitation
  • reference/access-control*.md - Access control bypass methods
  • reference/web-cache-poisoning*.md - Cache poisoning techniques
  • reference/web-cache-deception*.md - Cache deception attacks
  • reference/information-disclosure*.md - Information disclosure testing
web-app-logic — Kortix Marketplace | Kortix