High-risk tools in Abrasio
12 of the 17 tools in Abrasio are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
browser_clickExecuteClick an element using a CSS selector.
-
browser_evaluateExecutebrowser_evaluate
-
browser_fillExecuteClick a form field and fill it with text using human-like typing.
-
browser_go_backExecuteGo back to the previous page in browser history.
-
browser_go_forwardExecuteGo forward to the next page in browser history.
-
browser_hoverExecuteMove the mouse over an element using human-like WindMouse movement.
-
browser_navigateExecuteNavigate to a URL and wait for the page to load.
-
browser_pressExecutePress a keyboard key or key combination.
-
browser_reloadExecuteReload the current page.
-
browser_scrollExecuteScroll the page vertically with human-like easing.
-
browser_typeExecuteType text at the current cursor position (no element targeting).
-
browser_wait_forExecuteWait for an element matching the CSS selector to appear in the DOM.
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.