Search Results: ssrf

Found 16 Skills

Security & Complianceyaklang/hack-skills

injection-checking

Entry P1 category router for injection testing. Use when routing between XSS, SQLi, SSRF, XXE, SSTI, command injection, and NoSQL injection workflows based on how attacker-controlled input is consumed.

🇺🇸|EnglishTranslated

Security & Complianceyaklang/hack-skills

dns-rebinding-attacks

DNS rebinding attack playbook. Use when testing applications that trust DNS resolution for origin checks, interact with internal services from browser context, or when SSRF is not possible server-side but the target has client-side fetch/XHR to attacker-controlled domains.

🇺🇸|EnglishTranslated

Security & Complianceyaklang/hack-skills

http-parameter-pollution

HTTP Parameter Pollution (HPP): duplicate query/body keys parsed differently by servers, proxies, WAFs, and app frameworks. Use when filters and application layers disagree on which value wins, enabling bypass, SSRF second URL, logic abuse, or CSRF token confusion.

🇺🇸|EnglishTranslated

Security & Complianceed1s0nz/cyberstrikeai

xxe-testing

XXE XML外部实体注入测试的专业技能和方法论

🇺🇸|EnglishTranslated