performing-web-cache-deception-attack
CommunityDetect and prevent CDN cache deception.
Software Engineering#cdn#web-security#security-testing#web-cache-deception#cache-deception#authenticated-content
AuthorAcczdy
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill helps security engineers identify and assess web cache deception vulnerabilities by testing authenticated endpoints to determine if CDNs cache and serve personalized content to unauthenticated users.
Core Features & Use Cases
- Detects authenticated-page caching by manipulating URL extensions and request headers to reveal misconfigurations.
- Analyzes CDN and origin caching behavior using header inspection (X-Cache, CF-Cache-Status, Age) and content checks for PII exposure.
- Suitable for assessments of applications behind CDNs (Cloudflare, Akamai, Varnish) and reverse proxies to prevent data leakage.
Quick Start
Run the web cache deception attack test against a target URL with an authenticated session to verify whether the CDN caches personalized responses and document any exposure.
Dependency Matrix
Required Modules
requests
Components
scriptsreferences
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: performing-web-cache-deception-attack Download link: https://github.com/Acczdy/MoZiSec/archive/main.zip#performing-web-cache-deception-attack Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.