prototype-pollution-advanced
CommunityEscalate confirmed PP into RCE or XSS
Software Engineering#xss#security testing#rce#template injection#prototype pollution#nodejs child_process#filter bypass
AuthorlNwNl
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill helps you escalate a confirmed prototype pollution finding into practical impact by identifying the right framework gadget chain for RCE (server-side) or XSS (client-side), even when key filters on proto are present.
Core Features & Use Cases
- Server-side escalation to RCE: Maps prototype pollution properties to high-signal template-engine and Node.js child_process exploitation paths (e.g., EJS/Pug/Handlebars and NODE_OPTIONS/shell/argv0 patterns).
- Client-side gadget discovery for XSS: Connects deep-merge prototype pollution to common front-end sinks and DOM property behaviors (e.g., jQuery and Lodash template/sourceURL patterns).
- Filter bypass and detection playbooks: Provides robust black-box detection methods and constructor.prototype/bracket-notation/key-encoding bypass strategies to confirm and reach the gadget.
Quick Start
After you confirm prototype pollution in your target, instruct the agent to use this Skill to select the most likely gadget from the target stack and produce an end-to-end escalation plan from probe to RCE/XSS.
Dependency Matrix
Required Modules
None requiredComponents
references
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: prototype-pollution-advanced Download link: https://github.com/lNwNl/Methodos/archive/main.zip#prototype-pollution-advanced Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.