Skills
.Work. You
Rest

hunt-nodejs

Community

Identify Node.js security flaws and RCE chains.

Software Engineering#security#vulnerability#nodejs#express#rce#prototype-pollution#ssti
Authorelementalsouls
Version1.0.0
Installs0

System Documentation

What problem does it solve?

Hunting Node.js vulnerabilities and exploit chains to reveal potential remote code execution paths in modern web applications.

Core Features & Use Cases

  • Identify common Node.js vulnerabilities including prototype pollution, SSTI, and trust-proxy misconfigurations.
  • Map exploit chains from initial fingerprint to RCE sinks (e.g., child_process, eval) across Express, EJS/Pug/Handlebars, and related frameworks.
  • Provide actionable steps and payload guidance for red-team engagements targeting Node.js-based services.

Quick Start

Describe a Node.js target and apply the Node.js vulnerability chains to reveal potential RCE paths.

Dependency Matrix

Required Modules

None required

Components

Standard package

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: hunt-nodejs
Download link: https://github.com/elementalsouls/Claude-BugHunter/archive/main.zip#hunt-nodejs

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 510,000+ vetted skills library on demand.