Ssrf

The exploiting-server-side-request-forgery skill helps assess SSRF-prone features in authorized web targets, including URL fetchers, webhooks, preview tools, and cloud metadata access. It provides a guided workflow for detection, bypass testing, internal service probing, and Security Audit validation.

exploiting-api-injection-vulnerabilities skill for Security Audit teams testing APIs for SQL injection, NoSQL injection, command injection, LDAP injection, and SSRF across parameters, headers, and request bodies. This guide helps you spot risky inputs, compare baseline responses, and validate whether backend interactions are injectable.