offensive-xxe
CommunityMaster XXE testing for XML security.
Software Engineering#xml#pentest#security-testing#web-services#vulnerability-assessment#xxe#xml-parser
Authorriparino
Version1.0.0
Installs0
System Documentation
What problem does it solve?
XML External Entity (XXE) vulnerability testing checklist that guides security professionals through discovery and verification of XXE flaws in XML parsers, enabling risk assessment and remediation planning.
Core Features & Use Cases
- Comprehensive XXE testing coverage across classic, blind, and advanced payloads, including XInclude and SSRF-related vectors.
- Identification of XXE vulnerabilities across API endpoints, file uploads (SVG, DOCX, EPUB), SOAP/REST services, and legacy interfaces.
- Actionable remediation guidance with practical parser hardening and secure configuration recommendations.
Quick Start
Start by submitting a basic XXE payload to an XML input endpoint to verify vulnerability status.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: offensive-xxe Download link: https://github.com/riparino/Claude-Cyber/archive/main.zip#offensive-xxe Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.