offensive-ssrf
CommunityUncover SSRF risks with end-to-end testing.
Software Engineering#web-security#vulnerability-management#pentesting#ssrf#security-testing#cloud-metadata#oob-detection
Authorriparino
Version1.0.0
Installs0
System Documentation
What problem does it solve?
SSRF testing checklist identifies, validates, and documents server-side request forgery vulnerabilities across web applications, internal services, and cloud metadata endpoints, including blind/remote approaches and bypass techniques to assess risk and remediation.
Core Features & Use Cases
- Structured SSRF discovery and verification workflows across common input surfaces.
- Blind SSRF and out-of-band detection to confirm real impact.
- Cloud metadata access testing (AWS, Azure, GCP, and other providers) with safe guidance for remediation.
- Bypass technique coverage (IP encoding, DNS rebinding, redirect chains) and safe exploitation paths.
- Comprehensive reporting with evidence, impact, and mitigations for bug bounty and security testing.
Quick Start
Load the SSRF methodology and begin by mapping entry points, configuring out-of-band detection, and proceeding through the test sequence.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: offensive-ssrf Download link: https://github.com/riparino/Claude-Cyber/archive/main.zip#offensive-ssrf Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.