Broken Authentication Detector (OWASP A02) Identify and fix authentication vulnerabilities including weak passwords, session hijacking, and credential stuffing. When to Use - Reviewing login/signup implementations - Auditing session management - Implementing password reset flows - Adding OAuth/SSO integration - Setting up JWT authentication - Implementing MFA/2FA Common Vulnerabilities | Vulnerability | Risk | Impact | |--------------|------|--------| | Weak password policy | HIGH | Easy brute force | | No rate limiting | HIGH | Credential stuffing | | Session fixation | HIGH | Account takeov…