This is a comprehensive playbook for finding and exploiting open redirects, from basic parameter fuzzing through advanced OAuth token theft and SSRF chains. It covers the usual bypass tricks (protocol-relative URLs, userinfo abuse, backslash confusion) and the less obvious stuff like using Django's endswith validation against itself or chaining redirects through legitimate services. The OAuth section is especially detailed, showing how to leak tokens through implicit flow fragments and authorization codes. It also covers tabnabbing, which often gets forgotten. Use this when you're testing authentication flows, link preview features, or anywhere user-supplied URLs control navigation. The bypass table alone will save you from writing the same payloads repeatedly.
npx skills add https://github.com/yaklang/hack-skills --skill open-redirect